FreeBSD : isc-dhcp-server -- DHCPv6 crash (dc9f8335-2b3b-11e0-a91b-00e0815b8da8)

High Nessus Plugin ID 51824


The remote FreeBSD host is missing a security-related update.


ISC reports :

When the DHCPv6 server code processes a message for an address that was previously declined and internally tagged as abandoned it can trigger an assert failure resulting in the server crashing. This could be used to crash DHCPv6 servers remotely. This issue only affects DHCPv6 servers. DHCPv4 servers are unaffected.


Update the affected package.

See Also

Plugin Details

Severity: High

ID: 51824

File Name: freebsd_pkg_dc9f83352b3b11e0a91b00e0815b8da8.nasl

Version: $Revision: 1.8 $

Type: local

Published: 2011/01/31

Modified: 2013/06/22

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:isc-dhcp41-server, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 2011/01/28

Vulnerability Publication Date: 2011/01/26

Reference Information

CVE: CVE-2011-0413

CERT: 686084