CVE-2004-1111 — Cisco IOS vulnerability

CWE-3994 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

3.9%

top 11.64%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco IOS Cisco IOS Dhcp Blocked Interface

Timeline

PublishedJan 10

Latest updateApr 29

Description

Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the "no service dhcp" command, keep undeliverable DHCP packets in the queue instead of dropping them, which allows remote attackers to cause a denial of service (dropped traffic) via multiple undeliverable DHCP packets that exceed the input queue size.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶ciscocisco/ios_dhcp_blocked_interface

▶NVDcisco/ios8 versions+7

🔴Vulnerability Details

GHSA

GHSA-3rrq-mwrq-44vc: Cisco IOS 2↗2022-04-29

▶

📋Vendor Advisories

Cisco

Cisco IOS DHCP Blocked Interface Denial-of-Service↗2004-11-10

▶

Cisco

Cisco IOS DHCP Blocked Interface Denial-of-Service↗

▶