CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-6700

The decode_search function in dhcp.c in dhcpcd 3.x does not properly free allocated memory, which allows remote DHCP servers to cause a denial of service via a crafted response.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.6%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

http://www.debian.org/security/2016/dsa-3534
http://www.openwall.com/lists/oss-security/2015/12/02/1
http://www.openwall.com/lists/oss-security/2015/12/03/1
https://bugs.launchpad.net/ubuntu/+source/dhcpcd/+bug/1517226
https://launchpadlibrarian.net/228152582/dhcp.c.patch
http://www.debian.org/security/2016/dsa-3534
http://www.openwall.com/lists/oss-security/2015/12/02/1
http://www.openwall.com/lists/oss-security/2015/12/03/1
https://bugs.launchpad.net/ubuntu/+source/dhcpcd/+bug/1517226
https://launchpadlibrarian.net/228152582/dhcp.c.patch

Products affected by CVE-2012-6700

Dhcpcd Project » Dhcpcd » Version: 3.1.9

cpe:2.3:a:dhcpcd_project:dhcpcd:3.1.9
Dhcpcd Project » Dhcpcd » Version: 3.2.0

cpe:2.3:a:dhcpcd_project:dhcpcd:3.2.0
Dhcpcd Project » Dhcpcd » Version: 3.2.1

cpe:2.3:a:dhcpcd_project:dhcpcd:3.2.1
Dhcpcd Project » Dhcpcd » Version: 3.2.2

cpe:2.3:a:dhcpcd_project:dhcpcd:3.2.2
Dhcpcd Project » Dhcpcd » Version: 3.2.3

cpe:2.3:a:dhcpcd_project:dhcpcd:3.2.3
Debian » Debian Linux » Version: 7.0

cpe:2.3:o:debian:debian_linux:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-6700

Products

Pricing

Contact Us