Vigil@nce: ISC DHCP, denial of service via failover TCP
December 2010 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/
SYNTHESIS OF THE VULNERABILITY
An attacker can connect to the failover TCP port, in order to
block ISC DHCP.
– Severity: 2/4
– Creation date: 13/12/2010
DESCRIPTION OF THE VULNERABILITY
The ISC DHCP service can use the failover feature to switch to a
backup server. Exchanges between computers are done in a TCP
session on port 520/tcp.
However, if an attacker connects to this port (if this port is not
protected by a firewall), the DHCP service enters in "interrupted
communication" mode, and stops replying to DHCP queries.
An attacker can therefore connect to the failover TCP port, in
order to block ISC DHCP.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/ISC-DHCP-denial-of-service-via-failover-TCP-10194