The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to cause a denial of service (device restart) by triggering a transition into a recovery state that was intended to involve a network-interface restart but actually involves a full device restart, aka Bug ID CSCtn16281.
References
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 02:18
Type | Values Removed | Values Added |
---|---|---|
References | () http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7997 - Vendor Advisory | |
References | () http://www.securitytracker.com/id/1031218 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/98691 - |
Information
Published : 2014-11-15 02:59
Updated : 2024-11-21 02:18
NVD link : CVE-2014-7997
Mitre link : CVE-2014-7997
CVE.ORG link : CVE-2014-7997
JSON object : View
Products Affected
cisco
- aironet_ap1300
- aironet_ap1240ag
- aironet_3600i
- aironet_3600
- ios
- aironet_ap340
- aironet_ap1200
- aironet_ap1130ag
- aironet_ap1240
- aironet_3600p
- aironet_3600e
- aironet_ap1131
- aironet_1260
- aironet_3500
- aironet_ap1100
- aironet_600_office_extend
- aironet_1140
- aironet_ap350
- aironet_ap1400
- aironet_1040
- aironet_ap1230ag
CWE
CWE-399
Resource Management Errors