CVE-2004-1111

{"id": "CVE-2004-1111", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2005-01-10T05:00:00.000", "references": [{"url": "http://www.ciac.org/ciac/bulletins/p-034.shtml", "source": "cve@mitre.org"}, {"url": "http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml", "source": "cve@mitre.org"}, {"url": "http://www.kb.cert.org/vuls/id/630104", "tags": ["Third Party Advisory", "US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.us-cert.gov/cas/techalerts/TA04-316A.html", "tags": ["US Government Resource"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18021", "source": "cve@mitre.org"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632", "source": "cve@mitre.org"}, {"url": "http://www.ciac.org/ciac/bulletins/p-034.shtml", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.kb.cert.org/vuls/id/630104", "tags": ["Third Party Advisory", "US Government Resource"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.us-cert.gov/cas/techalerts/TA04-316A.html", "tags": ["US Government Resource"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18021", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the \"no service dhcp\" command, keep undeliverable DHCP packets in the queue instead of dropping them, which allows remote attackers to cause a denial of service (dropped traffic) via multiple undeliverable DHCP packets that exceed the input queue size."}], "lastModified": "2024-11-20T23:50:07.587", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios:12.2\\(14\\)sz:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6D9BA55-F193-4BCA-ACC2-BBC892E9D7E4"}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(18\\)ew:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E49B392-5366-422D-A10E-EE4F3A33C4B9"}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(18\\)ewa:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7EF707A6-5834-4295-8B38-17F279D49C82"}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(18\\)s:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D0E67EE-AF42-4B53-B70A-45562CE164D0"}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(18\\)se:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E319ADC-C636-4933-BD50-B613677AD4C0"}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(18\\)sv:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A15042D-EB07-4754-8144-947CDE669CAE"}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(18\\)sw:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E58F4903-E834-4476-876F-8C144BD93D4A"}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(20\\)ew:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "955BF110-FFBE-4368-BE06-21AC794C53AB"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:multiservice_platform_2650:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "92D41983-E6A8-4481-AA08-42DC92EC57EC"}, {"criteria": "cpe:2.3:h:cisco:multiservice_platform_2650xm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A6E0CA8-C89C-4CDD-8063-B10E6C122F43"}, {"criteria": "cpe:2.3:h:cisco:multiservice_platform_2651:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "19293B13-7FB1-4604-923D-E8760902E8BD"}, {"criteria": "cpe:2.3:h:cisco:multiservice_platform_2651xm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E6E13135-48E1-4D8C-9C0D-4EBD9A858CBD"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:7200_router:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "60DEA083-B9BC-42DB-A4F7-986A5A185DE6"}, {"criteria": "cpe:2.3:h:cisco:7300_router:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "239E1E03-7F82-48CE-943A-9228C9EDCF9C"}, {"criteria": "cpe:2.3:h:cisco:7500_router:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FCFAA111-F831-4BC9-BCD7-246ED6C0F3FF"}, {"criteria": "cpe:2.3:h:cisco:7600_router:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9097F459-1AE3-4924-8E81-046F84FBB041"}, {"criteria": "cpe:2.3:h:cisco:catalyst_7600:*:*:sup720_msfc3:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6D4F49E8-9C23-422C-9913-9C11E7F9BF9B"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}