Denial of Service Vulnerability in Cisco Aironet Wireless Access Points
CVE-2006-0354

Currently unrated

Key Information:

Vendor: Cisco
Status: Aironet Ap1100; Aironet Ap350; Aironet Ap1230ag; Aironet Ap1400
Vendor: CVE Published:; 22 January 2006

What is CVE-2006-0354?

A vulnerability exists in Cisco IOS versions prior to 12.3-7-JA2 on Aironet Wireless Access Points that allows remote authenticated users to conduct denial of service attacks. By sending a high volume of spoofed ARP packets to the management interface, attackers can create an overly large ARP table that leads to memory exhaustion. This results in the termination of packet passing or client connections, effectively disrupting network operations. Addressing this flaw is crucial for maintaining network stability and security.

References

http://securityreason.com/securityalert/339

third-party-advisoryx_refsource_SREASON

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.osvdb.org/22375

vdb-entryx_refsource_OSVDB

EPSS Score

5% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 22, 2006
Vulnerability Reserved
Jan 22, 2006