Unrated severityNVD Advisory· Published Aug 15, 2011· Updated Apr 29, 2026

CVE-2011-2748

Description

The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted DHCP packet.

Affected products

Isc/Dhcp85 versions
cpe:2.3:a:isc:dhcp:3.0:*:*:*:*:*:*:*+ 84 more
- cpe:2.3:a:isc:dhcp:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.1:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.1:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.1:rc10:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.1:rc11:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.1:rc12:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.1:rc13:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.1:rc14:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.1:rc2:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.1:rc5:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.1:rc6:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.1:rc7:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.1:rc8:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.1:rc9:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.2:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.2:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.2:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.2:rc2:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.2:rc3:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.3:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.3:b2:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.3:b3:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.4:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.4:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.4:b2:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.4:b3:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.4:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.5:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.5:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.0.6:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1-esv:*:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.0:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.0:a1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.0:a2:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.0:a3:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.0:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.0:b2:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.1:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.1:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.1:rc2:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.2:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.2:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.2:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.3:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.3:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:3.1.3:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.0-esv:*:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.0.1:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.0.1:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.0.1:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.0.2:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.0.2:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.0.2:b2:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.0.2:b3:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.0.2:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.0.3:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.0.3:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.0.3:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.1-esv:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.1-esv:r1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.1-esv:r2:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.1-esv:r3:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.1-esv:r3_b1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.1-esv:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.1.1:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.1.1:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.1.1:b2:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.1.1:b3:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.1.1:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.2.0:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.2.0:a1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.2.0:a2:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.2.0:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.2.0:b2:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.2.0:p1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.2.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.2.1:-:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.2.1:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:dhcp:4.2.1:rc1:*:*:*:*:*:*
Canonical (company)/Ubuntu Linux4 versions
cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*+ 3 more
- cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*
Debian/Debian Linux3 versions
cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.isc.org/software/dhcp/advisories/cve-2011-2748nvdPatchVendor Advisory
kb.juniper.net/InfoCenter/indexnvdThird Party Advisory
lists.fedoraproject.org/pipermail/package-announce/2011-September/065176.htmlnvdThird Party Advisory
lists.opensuse.org/opensuse-updates/2011-09/msg00014.htmlnvdMailing ListThird Party Advisory
redmine.pfsense.org/issues/1888nvdThird Party Advisory
secunia.com/advisories/45582nvdThird Party Advisory
secunia.com/advisories/45595nvdThird Party Advisory
secunia.com/advisories/45629nvdThird Party Advisory
secunia.com/advisories/45639nvdThird Party Advisory
secunia.com/advisories/45817nvdThird Party Advisory
secunia.com/advisories/45918nvdThird Party Advisory
secunia.com/advisories/46780nvdThird Party Advisory
security.gentoo.org/glsa/glsa-201301-06.xmlnvdThird Party Advisory
securitytracker.com/idnvdThird Party AdvisoryVDB Entry
www.debian.org/security/2011/dsa-2292nvdThird Party Advisory
www.isc.org/files/release-notes/DHCP%203.1-ESV-R3_0.htmlnvdVendor Advisory
www.isc.org/files/release-notes/DHCP%204.1-ESV-R3.htmlnvdVendor Advisory
www.isc.org/files/release-notes/DHCP%204.2.2_0.htmlnvdVendor Advisory
www.mandriva.com/security/advisoriesnvdThird Party Advisory
www.redhat.com/support/errata/RHSA-2011-1160.htmlnvdThird Party Advisory
www.securityfocus.com/bid/49120nvdThird Party AdvisoryVDB Entry
www.ubuntu.com/usn/USN-1190-1nvdThird Party Advisory
bugzilla.redhat.com/attachment.cginvdIssue TrackingThird Party Advisory
bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
exchange.xforce.ibmcloud.com/vulnerabilities/69139nvdThird Party AdvisoryVDB Entry
hermes.opensuse.org/messages/11695711nvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.070
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000