VDB
CVE-2003-0039
CVE-2003-0039
PUBLISHED
CVSS 5 MEDIUM
ISC dhcrelay (dhcp-relay) 3.0rc9 and earlier, and possibly other versions, allows remote attackers to cause a denial of service (packet storm) via a certain BOOTP packet that is forwarded to a broadcast MAC address, causing an infinite loop that is not restricted by a hop count.
EPSS 4.14% · 88.9th percentile
Risk Scores
CVSS 2.0
5
EPSS Score
4.14%
88.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | * |
| isc | dhcpd | 3.0.1, 3.0.1, 3.0.1 |
Timeline
- Feb 7, 2003 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- CLSA-2003:616 vendor-advisory
- VU#149953 third-party-advisory
- DSA-245 vendor-advisory
- TLSA-2003-26 vendor-advisory
- RHSA-2003:034 vendor-advisory
- 20030219 [OpenPKG-SA-2003.012] OpenPKG Security Advisory (dhcpd) mailing-list
- dhcp-dhcrelay-dos(11187) vdb
- 20030115 DoS against DHCP infrastructure with isc dhcrelay mailing-list
- 6628 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2003-0039 advisory