#VU20341 Input validation error in DHCP - CVE-2019-6470

Cybersecurity Help s.r.o.

Published: 2019-08-20

Vulnerability identifier: #VU20341

Vulnerability risk: Low

CVSSv4.0: 1.3 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2019-6470

CWE-ID: CWE-20

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
DHCP
Server applications / Other server solutions

Vendor: ISC

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a double deletion issue of released addresses in the DHCPv6 code. A remote non-authenticated attacker can send specially crafted DHCP message to the affected system and perform denial of service attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

DHCP: 2.0, 3.0 - 3.0.6, 3.1-esv - 3.1.3, 4.0-esv - 4.0.3, 4.1-ESV-R15-P1 - 4.1.2, 4.2.0 - 4.2.8, 4.3.0 - 4.3.6, 4.4.0

External links
https://source.isc.org/cgi-bin/gitweb.cgi?p=dhcp.git;a=commit;h=abacf8ad0d8844685e5cd76645a34ef2b8da...

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

PowerProtect Data Protection software update for third-party components

Multiple vulnerabilities in Dell Networking OS10

Multiple vulnerabilities in Dell EMC Data Computing Appliance (DCA)

Red Hat update for dhcp

OpenSUSE Linux update for dhcp

Denial of service in ISC DHCP

Red Hat update for dhcp