Fedora 14 : dhcp-4.2.0-19.P2.fc14 (2011-0862)

This script is Copyright (C) 2011-2016 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing a security update.

Description :

A flaw was discovered in the way the dhcpd daemon processed a message
for an address that had been previously declined and internally tagged
as abandoned. Processing such a message could trigger an assert
failure that could crash dhcpd if it was running as a DHCPv6 server.
DHCPv4 servers are unaffected. (CVE-2011-0413)

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

https://bugzilla.redhat.com/show_bug.cgi?id=672755
http://www.nessus.org/u?74e9a8ab

Solution :

Update the affected dhcp package.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)
CVSS Temporal Score : 6.8
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Fedora Local Security Checks

Nessus Plugin ID: 51842 ()

Bugtraq ID: 46035

CVE ID: CVE-2011-0413

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now