Vulnerabilities > CVE-2014-0704 - Resource Management Errors vulnerability in Cisco products

047910
CVSS 7.1 - HIGH
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE
network
cisco
CWE-399
nessus

Summary

The IGMP implementation on Cisco Wireless LAN Controller (WLC) devices 4.x, 5.x, 6.x, 7.0 before 7.0.250.0, 7.1, 7.2, and 7.3, when IGMPv3 Snooping is enabled, allows remote attackers to cause a denial of service (memory over-read and device restart) via a crafted field in an IGMPv3 message, aka Bug ID CSCuh33240.

Vulnerable Configurations

Part Description Count
OS
Cisco
53
Hardware
Cisco
1

Common Weakness Enumeration (CWE)

Nessus

NASL familyCISCO
NASL idCISCO-SA-20140305-WLC.NASL
descriptionThe remote Cisco Wireless LAN Controller (WLC) is affected by one or more of the following vulnerabilities : - Errors exist related to the handling of specially crafted ethernet 802.11 frames that could allow denial of service attacks. (CSCue87929, CSCuf80681) - An error exists related to the handling of WebAuth logins that could allow denial of service attacks. (CSCuf52361) - An error exists related to the unintended enabling of the HTTP administrative interface on Aironet access points due to flaws in the IOS code pushed to them by the controller. (CSCuf66202) - A memory over-read error exists related to IGMP handling that could allow denial of service attacks. (CSCuh33240) - An error exists related to the multicast listener discovery (MLD) service and malformed MLD version 2 message handling that could allow denial of service attacks. (CSCuh74233)
last seen2020-04-30
modified2014-03-14
plugin id73018
published2014-03-14
reporterThis script is Copyright (C) 2014-2020 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/73018
titleMultiple Vulnerabilities in Cisco Wireless LAN Controllers (cisco-sa-20140305-wlc)

Seebug

bulletinFamilyexploit
descriptionBugtraq ID:65980 CVE ID:CVE-2014-0704 Cisco Wireless LAN Controller负责全系统的无线LAN功能,例如安全策略、入侵保护、RF管理,服务质量和移动性。 Cisco Wireless LAN Controller IGMP处理子系统存在安全漏洞,由于不正确校验特制IGMP消息类型中的特定字段,攻击者可向网络注入恶意IGMPv3消息至WLC监听的网络,IGMP子系统在处理消息时可触发内存越界读,可使设备重载,造成拒绝服务攻击。 0 Cisco Wireless LAN Controller 4.x Cisco Wireless LAN Controller 5.x Cisco Wireless LAN Controller 6.x Cisco Wireless LAN Controller 7.2 Cisco Wireless LAN Controller 7.3 Cisco Wireless LAN Controller 7.4 Cisco Wireless LAN Controller 7.5 厂商补丁: Cisco ----- Cisco Wireless LAN Controller 7.0.250.0,7.4.121.0或7.6.100.0已经修复该漏洞,建议用户下载更新: http://www.cisco.com/
idSSV:61725
last seen2017-11-19
modified2014-03-11
published2014-03-11
reporterRoot
titleCisco Wireless LAN Controller IGMPv3远程拒绝服务漏洞