CVE-2015-8605

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet.

References

http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175594.html

http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176031.html

http://lists.opensuse.org/opensuse-updates/2016-02/msg00162.html

http://lists.opensuse.org/opensuse-updates/2016-02/msg00168.html

http://www.debian.org/security/2016/dsa-3442

http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

http://www.securityfocus.com/bid/80703

http://www.securitytracker.com/id/1034657

http://www.ubuntu.com/usn/USN-2868-1

https://blogs.sophos.com/2016/02/17/utm-up2date-9-354-released/

https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/

https://kb.isc.org/article/AA-01334

Details

Source: MITRE

Published: 2016-01-14

Updated: 2020-04-01

Type: CWE-20

Risk Information

CVSS v2

Base Score: 5.7

Vector: AV:A/AC:M/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 5.5

Severity: MEDIUM

CVSS v3

Base Score: 6.5

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 2.8

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:sophos:unified_threat_management_up2date:*:*:*:*:*:*:*:* versions up to 9.318 (inclusive)

cpe:2.3:a:sophos:unified_threat_management_up2date:*:*:*:*:*:*:*:* versions up to 9.353 (inclusive)

Configuration 2

OR

cpe:2.3:a:isc:dhcp:4.0.0:*:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.0.1:*:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.0.2:-:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.0.2:p1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.0.3:-:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.0.3:rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:-:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r10:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r10_b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r11_b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r11_rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r11_rc2:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r12:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r12_b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r2:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r3:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r3_b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r4:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r5:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r5_b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r5_rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r5_rc2:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r6:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r7:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r8:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r8_b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r8_rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r9:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r9_b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1-esv:r9_rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1.0:-:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1.1:-:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1.1:p1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1.2:-:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1.2:b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1.2:p1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.1.2:rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.0:-:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.0:p1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.0:p2:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.1:-:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.1:b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.1:p1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.1:rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.2:-:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.2:b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.2:rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.3:-:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.3:p1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.3:p2:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.4:-:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.4:b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.4:p1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.4:p2:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.4:rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.4:rc2:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.5:-:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.5:b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.5:p1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.5:rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.6:-:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.6:b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.6:rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.7:*:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.7:b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.7:rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.8:*:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.8:b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.8:rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.2.8:rc2:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.3.0:*:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.3.0:a1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.3.0:b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.3.0:rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.3.1:*:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.3.1:b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.3.1:rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.3.2:*:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.3.2:b1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.3.2:rc1:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.3.2:rc2:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.3.3:*:*:*:*:*:*:*

cpe:2.3:a:isc:dhcp:4.3.3:b1:*:*:*:*:*:*

Configuration 3

OR

cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Configuration 4

OR

cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*

Tenable Plugins

View all (20 total)

IDNameProductFamilySeverity
124946EulerOS Virtualization 3.0.1.0 : dhcp (EulerOS-SA-2019-1443)NessusHuawei Local Security Checks
medium
121654Photon OS 1.0: Dhcp PHSA-2016-0013NessusPhotonOS Local Security Checks
medium
111847Photon OS 1.0: Dhcp / Libtasn1 / Subversion / Unzip PHSA-2016-0013 (deprecated)NessusPhotonOS Local Security Checks
medium
110738EulerOS 2.0 SP3 : dhcp (EulerOS-SA-2018-1162)NessusHuawei Local Security Checks
medium
110127EulerOS 2.0 SP2 : dhcp (EulerOS-SA-2018-1123)NessusHuawei Local Security Checks
high
110126EulerOS 2.0 SP1 : dhcp (EulerOS-SA-2018-1122)NessusHuawei Local Security Checks
high
90809F5 Networks BIG-IP : ISC DHCP 4.x vulnerability (K57500018)NessusF5 Networks Local Security Checks
medium
89594Fedora 22 : dhcp-4.3.2-7.fc22 (2016-adb533a418)NessusFedora Local Security Checks
medium
89475Fedora 23 : dhcp-4.3.3-8.P1.fc23 (2016-0c5bb21bf1)NessusFedora Local Security Checks
medium
89050openSUSE Security Update : dhcp (openSUSE-2016-284)NessusSuSE Local Security Checks
medium
89017openSUSE Security Update : dhcp (openSUSE-2016-279)NessusSuSE Local Security Checks
medium
88893SUSE SLED12 / SLES12 Security Update : dhcp (SUSE-SU-2016:0541-1)NessusSuSE Local Security Checks
medium
88892SUSE SLED12 / SLES12 Security Update : dhcp (SUSE-SU-2016:0540-1)NessusSuSE Local Security Checks
medium
88834SUSE SLED11 / SLES11 Security Update : dhcp (SUSE-SU-2016:0481-1)NessusSuSE Local Security Checks
medium
87981FreeBSD : isc-dhcpd -- Denial of Service (05eeb7e9-b987-11e5-83ef-14dae9d210b8)NessusFreeBSD Local Security Checks
medium
87971Amazon Linux AMI : dhcp (ALAS-2016-637)NessusAmazon Linux Local Security Checks
medium
87931Debian DLA-385-2 : isc-dhcp regression updateNessusDebian Local Security Checks
medium
87916Ubuntu 12.04 LTS / 14.04 LTS / 15.04 / 15.10 : isc-dhcp vulnerability (USN-2868-1)NessusUbuntu Local Security Checks
medium
87898Debian DSA-3442-1 : isc-dhcp - security updateNessusDebian Local Security Checks
medium
87883Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / current : dhcp (SSA:2016-012-01)NessusSlackware Local Security Checks
medium