7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
6.4 Medium
AI Score
Confidence
High
0.048 Low
EPSS
Percentile
92.7%
dnsmasq 2.25 allows remote attackers to cause a denial of service (daemon crash) by (1) renewing a nonexistent lease or (2) sending a DHCPREQUEST for an IP address that is not in the same network, related to the DHCP NAK response from the daemon.
freshmeat.net/projects/dnsmasq/?branch_id=1991&release_id=217681
www.openwall.com/lists/oss-security/2008/06/30/7
www.openwall.com/lists/oss-security/2008/07/01/8
www.openwall.com/lists/oss-security/2008/07/02/4
www.openwall.com/lists/oss-security/2008/07/03/4
www.openwall.com/lists/oss-security/2008/07/08/8
www.openwall.com/lists/oss-security/2008/07/12/3
www.thekelleys.org.uk/dnsmasq/CHANGELOG
bugs.launchpad.net/ubuntu/+source/dnsmasq/+bug/47438
exchange.xforce.ibmcloud.com/vulnerabilities/43929