VYPR
Unrated severityNVD Advisory· Published Mar 28, 2013· Updated Jun 16, 2026

CVE-2013-2494

CVE-2013-2494

Description

libdns in ISC DHCP 4.2.x before 4.2.5-P1 allows remote name servers to cause a denial of service (memory consumption) via vectors involving a regular expression, as demonstrated by a memory-exhaustion attack against a machine running a dhcpd process, a related issue to CVE-2013-2266.

Affected products

20
  • Isc/DHCP20 versions
    cpe:2.3:a:isc:dhcp:4.2.0:*:*:*:*:*:*:*+ 19 more
    • cpe:2.3:a:isc:dhcp:4.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.0:a1:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.0:a2:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.0:b1:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.0:b2:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.0:p1:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.1:b1:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.1:rc1:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.2:b1:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.2:rc1:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.3:p1:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.3:p2:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.4:p1:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcp:4.2.5:*:*:*:*:*:*:*
    • (no CPE)range: <4.2.5-P1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.