Описание
Cisco IOS before 12.3-7-JA2 on Aironet Wireless Access Points (WAP) allows remote authenticated users to cause a denial of service (termination of packet passing or termination of client connections) by sending the management interface a large number of spoofed ARP packets, which creates a large ARP table that exhausts memory, aka Bug ID CSCsc16644.
Ссылки
- PatchVendor Advisory
- Patch
- ExploitVendor Advisory
- PatchVendor Advisory
- Patch
- ExploitVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:h:cisco:aironet_ap1100:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1130ag:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1200:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1230ag:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1240ag:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1300:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1400:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap350:*:*:*:*:*:*:*:*
EPSS
Процентиль: 92%
0.07828
Низкий
5.5 Medium
CVSS2
Дефекты
CWE-399
Связанные уязвимости
github
почти 4 года назад
Cisco IOS before 12.3-7-JA2 on Aironet Wireless Access Points (WAP) allows remote authenticated users to cause a denial of service (termination of packet passing or termination of client connections) by sending the management interface a large number of spoofed ARP packets, which creates a large ARP table that exhausts memory, aka Bug ID CSCsc16644.
EPSS
Процентиль: 92%
0.07828
Низкий
5.5 Medium
CVSS2
Дефекты
CWE-399