CVE-2017-3144

MEDIUM

Description

A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to exhaustion of the pool of socket descriptors available to the DHCP server. Affects ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, 4.3.0 to 4.3.6. Older versions may also be affected but are well beyond their end-of-life (EOL). Releases prior to 4.1.0 have not been tested.

References

http://www.securityfocus.com/bid/102726

http://www.securitytracker.com/id/1040194

https://access.redhat.com/errata/RHSA-2018:0158

https://kb.isc.org/docs/aa-01541

https://usn.ubuntu.com/3586-1/

https://www.debian.org/security/2018/dsa-4133

Details

Source: MITRE

Published: 2019-01-16

Updated: 2019-02-07

Type: CWE-400

Risk Information

CVSS v2.0

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3.0

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 3.9

Severity: HIGH