CVE-2014-7997

The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to cause a denial of service (device restart) by triggering a transition into a recovery state that was intended to involve a network-interface restart but actually involves a full device restart, aka Bug ID CSCtn16281.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:cisco:ios:-:*:*:*:*:*:*:*
OR cpe:2.3:h:cisco:aironet_1040:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_1140:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_1260:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_3500:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_3600:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_3600e:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_3600i:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_3600p:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_600_office_extend:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1100:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1130ag:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1131:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1200:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1230ag:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1240:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1240ag:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1300:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap1400:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap340:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap340:11.21:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap350:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_ap350:11.21:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-11-15 02:59

Updated : 2024-02-04 18:35


NVD link : CVE-2014-7997

Mitre link : CVE-2014-7997

CVE.ORG link : CVE-2014-7997


JSON object : View

Products Affected

cisco

  • aironet_3600
  • aironet_ap1240ag
  • aironet_ap1130ag
  • aironet_ap350
  • aironet_1140
  • aironet_3600p
  • ios
  • aironet_1260
  • aironet_ap1300
  • aironet_600_office_extend
  • aironet_ap340
  • aironet_ap1200
  • aironet_ap1230ag
  • aironet_3600i
  • aironet_3500
  • aironet_ap1100
  • aironet_3600e
  • aironet_ap1400
  • aironet_ap1131
  • aironet_1040
  • aironet_ap1240
CWE
CWE-399

Resource Management Errors