← Back

CVE-2004-1111

nvd nist
Published: Jan 10, 2005Modified: Apr 16, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:N/I:N/A:P
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the "no service dhcp" command, keep undeliverable DHCP packets in the queue instead of dropping them, which allows remote attackers to cause a denial of service (dropped traffic) via multiple undeliverable DHCP packets that exceed the input queue size.

Affected (17)

Cisco
10 products
Ios
Multiservice Platform 2650
Multiservice Platform 2650xm
Multiservice Platform 2651
Multiservice Platform 2651xm
7200 Router
7300 Router
7500 Router
7600 Router
Catalyst 7600
Configuration A
12 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Ios
Version 12.2(14)sz
Ios
Version 12.2(18)ew
Ios
Version 12.2(18)ewa
Ios
Version 12.2(18)s
Ios
Version 12.2(18)se
Ios
Version 12.2(18)sv
Ios
Version 12.2(18)sw
Ios
Version 12.2(20)ew
Multiservice Platform 2650
All versions
Multiservice Platform 2650xm
All versions
Multiservice Platform 2651
All versions
Multiservice Platform 2651xm
All versions
Configuration B
5 vulnerable
Vulnerable SoftwareAffected Versions
7200 Router
All versions
7300 Router
All versions
7500 Router
All versions
7600 Router
All versions
Catalyst 7600
All versions

References (12)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Third Party AdvisoryUS Government Resource
Source: cve@mitre.org
US Government Resource
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.