Vulnerabilities > CVE-2014-0704 - Resource Management Errors vulnerability in Cisco products
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
The IGMP implementation on Cisco Wireless LAN Controller (WLC) devices 4.x, 5.x, 6.x, 7.0 before 7.0.250.0, 7.1, 7.2, and 7.3, when IGMPv3 Snooping is enabled, allows remote attackers to cause a denial of service (memory over-read and device restart) via a crafted field in an IGMPv3 message, aka Bug ID CSCuh33240.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Nessus
NASL family | CISCO |
NASL id | CISCO-SA-20140305-WLC.NASL |
description | The remote Cisco Wireless LAN Controller (WLC) is affected by one or more of the following vulnerabilities : - Errors exist related to the handling of specially crafted ethernet 802.11 frames that could allow denial of service attacks. (CSCue87929, CSCuf80681) - An error exists related to the handling of WebAuth logins that could allow denial of service attacks. (CSCuf52361) - An error exists related to the unintended enabling of the HTTP administrative interface on Aironet access points due to flaws in the IOS code pushed to them by the controller. (CSCuf66202) - A memory over-read error exists related to IGMP handling that could allow denial of service attacks. (CSCuh33240) - An error exists related to the multicast listener discovery (MLD) service and malformed MLD version 2 message handling that could allow denial of service attacks. (CSCuh74233) |
last seen | 2020-04-30 |
modified | 2014-03-14 |
plugin id | 73018 |
published | 2014-03-14 |
reporter | This script is Copyright (C) 2014-2020 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/73018 |
title | Multiple Vulnerabilities in Cisco Wireless LAN Controllers (cisco-sa-20140305-wlc) |
Seebug
bulletinFamily | exploit |
description | Bugtraq ID:65980 CVE ID:CVE-2014-0704 Cisco Wireless LAN Controller负责全系统的无线LAN功能,例如安全策略、入侵保护、RF管理,服务质量和移动性。 Cisco Wireless LAN Controller IGMP处理子系统存在安全漏洞,由于不正确校验特制IGMP消息类型中的特定字段,攻击者可向网络注入恶意IGMPv3消息至WLC监听的网络,IGMP子系统在处理消息时可触发内存越界读,可使设备重载,造成拒绝服务攻击。 0 Cisco Wireless LAN Controller 4.x Cisco Wireless LAN Controller 5.x Cisco Wireless LAN Controller 6.x Cisco Wireless LAN Controller 7.2 Cisco Wireless LAN Controller 7.3 Cisco Wireless LAN Controller 7.4 Cisco Wireless LAN Controller 7.5 厂商补丁: Cisco ----- Cisco Wireless LAN Controller 7.0.250.0,7.4.121.0或7.6.100.0已经修复该漏洞,建议用户下载更新: http://www.cisco.com/ |
id | SSV:61725 |
last seen | 2017-11-19 |
modified | 2014-03-11 |
published | 2014-03-11 |
reporter | Root |
title | Cisco Wireless LAN Controller IGMPv3远程拒绝服务漏洞 |