CVE-2007-2461

Currently unrated

Key Information:

Vendor: Cisco
Status: Pix; Adaptive Security Appliance Software
Vendor: CVE Published:; 2 May 2007

Summary

The DHCP relay agent in Cisco Adaptive Security Appliance (ASA) and PIX 7.2 allows remote attackers to cause a denial of service (dropped packets) via a DHCPREQUEST or DHCPINFORM message that causes multiple DHCPACK messages to be sent from DHCP servers to the agent, which consumes the memory allocated for a local buffer. NOTE: this issue only occurs when multiple DHCP servers are used.

References

http://www.cisco.com/en/US/products/products_security_res...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/23763

vdb-entryx_refsource_BID

http://www.securitytracker.com/id?1017999

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
May 2, 2007
Vulnerability Reserved
May 2, 2007