CVE-2014-7997
6.1
Vector
AV:A/AC:L/Au:N/C:N/I:N/A:C
Exploitability: 6.5 / Impact: 6.9
Source: NVD
Description
The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to cause a denial of service (device restart) by triggering a transition into a recovery state that was intended to involve a network-interface restart but actually involves a full device restart, aka Bug ID CSCtn16281.
Affected (1)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Cisco Aironet 1040 | All versions |
Cisco Aironet 1140 | All versions |
Cisco Aironet 1260 | All versions |
Cisco Aironet 3500 | All versions |
Cisco Aironet 3600 | All versions |
Cisco Aironet 3600e | All versions |
Cisco Aironet 3600i | All versions |
Cisco Aironet 3600p | All versions |
Cisco Aironet 600 Office Extend | All versions |
Cisco Aironet Ap1100 | All versions |
Cisco Aironet Ap1130ag | All versions |
Cisco Aironet Ap1131 | All versions |
Cisco Aironet Ap1200 | All versions |
Cisco Aironet Ap1230ag | All versions |
Cisco Aironet Ap1240 | All versions |
Cisco Aironet Ap1240ag | All versions |
Cisco Aironet Ap1300 | All versions |
Cisco Aironet Ap1400 | All versions |
Cisco Aironet Ap340 | All versions |
Cisco Aironet Ap350 | All versions |
Related CWEs
References (6)
Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Source: psirt@cisco.com
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Timeline
No history available yet.