Vulnerability Details : CVE-2004-1111
Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the "no service dhcp" command, keep undeliverable DHCP packets in the queue instead of dropping them, which allows remote attackers to cause a denial of service (dropped traffic) via multiple undeliverable DHCP packets that exceed the input queue size.
Vulnerability category: Denial of service
Exploit prediction scoring system (EPSS) score for CVE-2004-1111
Probability of exploitation activity in the next 30 days: 1.90%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 87 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2004-1111
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST |
References for CVE-2004-1111
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632
-
http://www.ciac.org/ciac/bulletins/p-034.shtml
-
http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/18021
-
http://www.kb.cert.org/vuls/id/630104
Third Party Advisory;US Government Resource
-
http://www.us-cert.gov/cas/techalerts/TA04-316A.html
US Government Resource
Products affected by CVE-2004-1111
- cpe:2.3:o:cisco:ios:12.2\(18\)ew:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:12.2\(18\)ewa:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:12.2\(18\)s:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:12.2\(18\)se:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:12.2\(14\)sz:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:12.2\(20\)ew:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:12.2\(18\)sv:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:12.2\(18\)sw:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:7200_router:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:7500_router:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:catalyst_7600:*:*:sup720_msfc3:*:*:*:*:*
- cpe:2.3:h:cisco:multiservice_platform_2650:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:multiservice_platform_2650xm:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:multiservice_platform_2651:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:multiservice_platform_2651xm:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:7300_router:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:7600_router:*:*:*:*:*:*:*:*