Vulnerability Report

CVE-2011-0413

Title: Isc Dhcp Denial of Service (DoS)

DoS

Proof Of Concept

No public PoC currently indexed for CVE-2011-0413.

CWE Category CWE-20

Published Date Jan 31, 2011

Modified Date Apr 29, 2026

Exploit Status Not Found

Score 7.8 CVSS v2.0

Exploit Probability (EPSS)

8.61%

Vulnerability Summary

CVE-2011-0413: The DHCPv6 server in ISC DHCP 4.0.x and 4.1.x before 4.1.2-P1, 4.0-ESV and 4.1-ESV before 4.1-ESV-R1, and 4.2.x before 4.2.1b1 allows remote attackers to cause a denial of service (assertion failure and daemon crash) by sending a message over IPv6 for a declined and abandoned address.

Impacted Vendors

isc 1

Reference Links

http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053644.html http://secunia.com/advisories/43006 http://secunia.com/advisories/43104 http://secunia.com/advisories/43167 http://secunia.com/advisories/43354 http://secunia.com/advisories/43613 http://securitytracker.com/id?1024999 http://www.debian.org/security/2011/dsa-2184 http://www.isc.org/software/dhcp/advisories/cve-2011-0413 http://www.kb.cert.org/vuls/id/686084 http://www.mandriva.com/security/advisories?name=MDVSA-2011:022 http://www.osvdb.org/70680 http://www.redhat.com/support/errata/RHSA-2011-0256.html http://www.securityfocus.com/bid/46035 http://www.vupen.com/english/advisories/2011/0235 http://www.vupen.com/english/advisories/2011/0266 http://www.vupen.com/english/advisories/2011/0300 http://www.vupen.com/english/advisories/2011/0400 http://www.vupen.com/english/advisories/2011/0583 https://exchange.xforce.ibmcloud.com/vulnerabilities/64959 https://kb.isc.org/article/AA-00456 http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053644.html http://secunia.com/advisories/43006 http://secunia.com/advisories/43104 http://secunia.com/advisories/43167 http://secunia.com/advisories/43354 http://secunia.com/advisories/43613 http://securitytracker.com/id?1024999 http://www.debian.org/security/2011/dsa-2184 http://www.isc.org/software/dhcp/advisories/cve-2011-0413 http://www.kb.cert.org/vuls/id/686084 http://www.mandriva.com/security/advisories?name=MDVSA-2011:022 http://www.osvdb.org/70680 http://www.redhat.com/support/errata/RHSA-2011-0256.html http://www.securityfocus.com/bid/46035 http://www.vupen.com/english/advisories/2011/0235 http://www.vupen.com/english/advisories/2011/0266 http://www.vupen.com/english/advisories/2011/0300 http://www.vupen.com/english/advisories/2011/0400 http://www.vupen.com/english/advisories/2011/0583 https://exchange.xforce.ibmcloud.com/vulnerabilities/64959 https://kb.isc.org/article/AA-00456

CVSS v2.0

Source Entity [email protected]

Severity HIGH

7.8

Access Vector

N/A

Authentication

N/A

RAW VECTOR AV:N/AC:L/Au:N/C:N/I:N/A:C

Associated Attack Patterns (CAPEC)

Total: Patterns

CVE-2011-0413 Exploits & PoCs (Proof Of Concept)

No public PoCs found in our database for this CVE.

April 29, 2026 MODIFIED

Vulnerability data updated via NVD.

April 11, 2025 MODIFIED

Vulnerability data or affected products updated.

January 31, 2011 PUBLISHED

Vulnerability first announced in NVD.

Attack Vector Matrix

Access Vector N/A

Complexity N/A

Privileges N/A

Interaction NONE

CVSS Vector String


                                    AV:N/AC:L/Au:N/C:N/I:N/A:C

Affected Stack

No specific products linked.