Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2013-2494
HistoryOct 03, 2022 - 4:14 p.m.

CVE-2013-2494

2022-10-0316:14:59
CWE-119
mitre
web.nvd.nist.gov
33
isc dhcp
libdns
denial of service
remote name servers
memory consumption
cve-2013-2494
nvd

CVSS2

4.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:S/C:N/I:N/A:C

AI Score

8

Confidence

High

EPSS

0.943

Percentile

99.2%

JSON

libdns in ISC DHCP 4.2.x before 4.2.5-P1 allows remote name servers to cause a denial of service (memory consumption) via vectors involving a regular expression, as demonstrated by a memory-exhaustion attack against a machine running a dhcpd process, a related issue to CVE-2013-2266.

Affected configurations

Nvd
Node
iscdhcpMatch4.2.0
OR
iscdhcpMatch4.2.0a1
OR
iscdhcpMatch4.2.0a2
OR
iscdhcpMatch4.2.0b1
OR
iscdhcpMatch4.2.0b2
OR
iscdhcpMatch4.2.0p1
OR
iscdhcpMatch4.2.0rc1
OR
iscdhcpMatch4.2.1
OR
iscdhcpMatch4.2.1b1
OR
iscdhcpMatch4.2.1rc1
OR
iscdhcpMatch4.2.2
OR
iscdhcpMatch4.2.2b1
OR
iscdhcpMatch4.2.2rc1
OR
iscdhcpMatch4.2.3
OR
iscdhcpMatch4.2.3p1
OR
iscdhcpMatch4.2.3p2
OR
iscdhcpMatch4.2.4
OR
iscdhcpMatch4.2.4p1
OR
iscdhcpMatch4.2.5
VendorProductVersionCPE
iscdhcp4.2.2cpe:/a:isc:dhcp:4.2.2:rc1::
iscdhcp4.2.3cpe:/a:isc:dhcp:4.2.3:::
iscdhcp4.2.0cpe:/a:isc:dhcp:4.2.0:b1::
iscdhcp4.2.1cpe:/a:isc:dhcp:4.2.1:b1::
iscdhcp4.2.0cpe:/a:isc:dhcp:4.2.0:p1::
iscdhcp4.2.5cpe:/a:isc:dhcp:4.2.5:::
iscdhcp4.2.0cpe:/a:isc:dhcp:4.2.0:::
iscdhcp4.2.2cpe:/a:isc:dhcp:4.2.2:::
iscdhcp4.2.2cpe:/a:isc:dhcp:4.2.2:b1::
iscdhcp4.2.0cpe:/a:isc:dhcp:4.2.0:b2::
Rows per page:
1-10 of 191

Related

nessus 35
ubuntucve 2
nvd 2
debiancve 2
cvelist 2
prion 2
openvas 30
gentoo 2
rosalinux 1
veracode 1
slackware 2
fedora 3
redhat 3
oraclelinux 4
amazon 1
freebsd 2
seebug 1
securityvulns 4
f5 2
checkpoint_advisories 1
freebsd_advisory 1
debian 1
centos 2
cve 1
ubuntu 1
nessus
nessus
Mandriva Linux Security Advisory : dhcp (MDVSA-2013:059)
2013-04-20 00:00:00
GLSA-201401-05 : ISC DHCP: Denial of Service
2014-01-07 00:00:00
Oracle Linux 5 : bind97 (ELSA-2013-0690)
2013-07-12 00:00:00
ubuntucve
ubuntucve
CVE-2013-2494
2013-03-28 00:00:00
CVE-2013-2266
2013-03-26 00:00:00
nvd
nvd
CVE-2013-2494
2013-03-28 16:55:01
CVE-2013-2266
2013-03-28 16:55:01
debiancve
debiancve
CVE-2013-2494
2022-10-03 16:14:59
CVE-2013-2266
2013-03-28 16:55:01
cvelist
cvelist
CVE-2013-2494
2022-10-03 16:14:59
CVE-2013-2266
2013-03-28 16:00:00
prion
prion
Design/Logic Flaw
2013-03-28 16:55:00
Code injection
2013-03-28 16:55:00
openvas
openvas
Gentoo Security Advisory GLSA 201401-05
2015-09-29 00:00:00
Ubuntu Update for bind9 USN-1783-1
2013-04-02 00:00:00
Debian Security Advisory DSA 2656-1 (bind9 - denial of service)
2013-03-30 00:00:00
gentoo
gentoo
ISC DHCP: Denial of service
2014-01-06 00:00:00
BIND: Denial of service
2014-01-29 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1822
2021-07-02 16:37:55
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:51:10
slackware
slackware
dhcp
2013-03-27 03:20:37
bind
2013-03-27 03:19:59
fedora
fedora
[SECURITY] Fedora 18 Update: bind-9.9.2-10.P2.fc18
2013-04-05 23:08:28
[SECURITY] Fedora 17 Update: bind-9.9.2-7.P2.fc17
2013-04-07 00:25:01
[SECURITY] Fedora 18 Update: bind-9.9.3-4.P2.fc18
2013-08-04 00:13:45
redhat
redhat
(RHSA-2013:0690) Important: bind97 security update
2013-03-28 00:00:00
(RHSA-2013:0689) Important: bind security and bug fix update
2013-03-28 00:00:00
(RHSA-2013:0746) Important: rhev-hypervisor6 security and bug fix update
2013-04-23 00:00:00
oraclelinux
oraclelinux
bind security and bug fix update
2013-03-28 00:00:00
bind97 security update
2013-03-28 00:00:00
bind97 security and bug fix update
2014-09-17 00:00:00
amazon
amazon
Important: bind
2013-04-04 11:09:00
freebsd
freebsd
dns/bind9* -- Malicious Regex Can Cause Memory Exhaustion
2013-03-11 00:00:00
FreeBSD -- BIND remote denial of service
2013-04-02 00:00:00
seebug
seebug
ISC BIND 9 'libdns' θΏœη¨‹ζ‹’η»ζœεŠ‘ζΌζ΄ž(CVE-2013-2266)
2013-03-29 00:00:00
securityvulns
securityvulns
[USN-1783-1] Bind vulnerability
2013-04-01 00:00:00
[slackware-security] dhcp (SSA:2013-086-02)
2013-04-01 00:00:00
bind / dhcp DoS
2013-04-01 00:00:00
f5
f5
SOL14386 - BIND vulnerability CVE-2013-2266
2013-05-01 00:00:00
K14386 : BIND vulnerability CVE-2013-2266
2014-08-26 00:00:00
checkpoint_advisories
checkpoint_advisories
ISC BIND Regular Expression Handling Denial of Service (CVE-2013-2266)
2013-06-30 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-13:04.bind
2013-04-02 00:00:00
debian
debian
[SECURITY] [DSA 2656-1] bind9 security update
2013-03-30 15:42:49
centos
centos
bind97 security update
2013-03-28 23:25:41
bind security update
2013-03-29 00:19:00
cve
cve
CVE-2013-2266
2013-03-28 16:55:01
ubuntu
ubuntu
Bind vulnerability
2013-03-29 00:00:00

CVSS2

4.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:S/C:N/I:N/A:C

AI Score

8

Confidence

High

EPSS

0.943

Percentile

99.2%

JSON
Related for CVE-2013-2494
nessus35ubuntucve2nvd2debiancve2cvelist2prion2openvas30gentoo2rosalinux1veracode1slackware2fedora3redhat3oraclelinux4amazon1freebsd2seebug1securityvulns4f52checkpoint_advisories1freebsd_advisory1debian1centos2cve1ubuntu1