FreeBSD : isc-dhcp-server -- DHCPv6 crash (dc9f8335-2b3b-11e0-a91b-00e0815b8da8)

This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

ISC reports :

When the DHCPv6 server code processes a message for an address that
was previously declined and internally tagged as abandoned it can
trigger an assert failure resulting in the server crashing. This could
be used to crash DHCPv6 servers remotely. This issue only affects
DHCPv6 servers. DHCPv4 servers are unaffected.

See also :

http://www.isc.org/software/dhcp/advisories/cve-2011-0413
http://www.nessus.org/u?93173e82

Solution :

Update the affected package.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 51824 ()

Bugtraq ID:

CVE ID: CVE-2011-0413

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now