Input validation

🗓️ 28 Mar 2018 22:29:00Reported by PRIOn knowledge baseType

prion

prion🔗 www.prio-n.com👁 21 Views

A vulnerability in DHCP option 82 encapsulation of Cisco IOS and IOS XE software allows remote attacker to cause DoS

Reporter	Title	Published	Views	Family All 21
Tenable Nessus	Rockwell Automation Stratix Ethernet Switches < 15.3 IOS DHCP Reload	8 May 201900:00	–	nessus
Tenable Nessus	Cisco IOS DHCP Multiple Vulnerabilities	17 Apr 201800:00	–	nessus
Tenable Nessus	Cisco IOS DHCP Multiple Vulnerabilities	17 Apr 201800:00	–	nessus
Tenable Nessus	Cisco Ios Improper Restriction of Operations within the Bounds of a Memory Buffer	8 Nov 201900:00	–	nessus
Tenable Nessus	Rockwell Automation Stratix Industrial Managed Ethernet Switch 7Pk Errors (CVE-2018-0155)	15 Nov 202300:00	–	nessus
Tenable Nessus	Rockwell Automation Stratix Industrial Managed Ethernet Switch Improper Input Validation (CVE-2018-0172)	15 Nov 202300:00	–	nessus
ATTACKERKB	CVE-2018-0172	28 Mar 201800:00	–	attackerkb
BDU FSTEC	The vulnerability affects Cisco IOS and Cisco IOS XE operating systems via DHCP options. It allows a malicious actor to trigger a device reboot or cause a service failure.	2 Aug 202200:00	–	bdu_fstec
Circl	CVE-2018-0172	14 Jun 202321:10	–	circl
CISA KEV Catalog	Cisco IOS and IOS XE Software Improper Input Validation Vulnerability	3 Mar 202200:00	–	cisa_kev

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-dhcpr1
tenable	www.tenable.com/security/research/tra-2018-06
securitytracker	www.securitytracker.com/id/1040591
securityfocus	www.securityfocus.com/bid/103552
ics-cert	www.ics-cert.us-cert.gov/advisories/ICSA-18-107-05
ics-cert	www.ics-cert.us-cert.gov/advisories/ICSA-18-107-04

04 Sep 2020 18:25Current

8.8High risk

Vulners AI Score8.8

EPSS0.07824

dhcp option 82 cisco ios cisco ios xe input validation denial of service dhcpv4 heap overflow remote attacker