Intrusion Prevention

ISC.DHCP.Server.DUID.Handling.Stack.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Buffer Overflow vulnerability in ISC DHCP Server.
The vulnerability is due to an improper boundary check condition in the application when parsing the client DHCP unique identifier. As a result, a remote attacker may be able exploit this to execute arbitrary code within the context of the application or possibly cause a denial of service condition.

Affected Products

ISC DHCP Server 4.2.x

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.
Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Upgrade to the latest version available from the website.
https://kb.isc.org/article/AA-00714

CVE References

CVE-2012-3570

Other References

http://osvdb.org/84252