Vulnerabilities > CVE-2014-7997 - Resource Management Errors vulnerability in Cisco IOS

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

cisco

CWE-399

NVD

Published: 2014-11-15

Updated: 2024-11-21

Summary

The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to cause a denial of service (device restart) by triggering a transition into a recovery state that was intended to involve a network-interface restart but actually involves a full device restart, aka Bug ID CSCtn16281.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco IOS -	1
Hardware	Cisco Cisco Aironet 1040 - Cisco Aironet 1140 - Cisco Aironet 1260 - Cisco Aironet 3500 - Cisco Aironet 3600 - Cisco Aironet 3600E - Cisco Aironet 3600I - Cisco Aironet 3600P - Cisco Aironet 600 Office Extend - Cisco Aironet Ap1100 * Cisco Aironet Ap1130Ag * Cisco Aironet Ap1131 * Cisco Aironet Ap1200 * Cisco Aironet Ap1230Ag * Cisco Aironet Ap1240 * Cisco Aironet Ap1240Ag * Cisco Aironet Ap1300 * Cisco Aironet Ap1400 * Cisco Aironet Ap340 * Cisco Aironet Ap340 11.21 Cisco Aironet Ap350 * Cisco Aironet Ap350 11.21	22

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References