Cisco IOS Malformed DHCP Packet DoS

2004-11-10T00:00:00
ID OSVDB:11605
Type osvdb
Reporter OSVDB
Modified 2004-11-10T00:00:00

Description

Vulnerability Description

IOS contains a flaw that may allow a remote denial of service. The issue is triggered when a number of malformed DHCP packets are not processed by or purged from an interface queue, and will result in loss of availability for the interface when the queue fills and is unable to process new packets.

Solution Description

Upgrade to version indicated by Cisco product matrix, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

IOS contains a flaw that may allow a remote denial of service. The issue is triggered when a number of malformed DHCP packets are not processed by or purged from an interface queue, and will result in loss of availability for the interface when the queue fills and is unable to process new packets.

References:

Vendor Specific Advisory URL Security Tracker: 1012166 Secunia Advisory ID:13148 ISS X-Force ID: 18021 CVE-2004-1111 CIAC Advisory: p-034 CERT VU: 630104