Denial of Service Vulnerability in Cisco ASA and PIX Products
CVE-2007-2461

Currently unrated

Key Information:

Vendor: Cisco
Status: Pix; Adaptive Security Appliance Software
Vendor: CVE Published:; 2 May 2007

What is CVE-2007-2461?

The DHCP relay agent vulnerability in Cisco Adaptive Security Appliance (ASA) and PIX versions 7.2 enables remote attackers to create a denial of service condition. This occurs when multiple DHCP servers send numerous DHCPACK messages in response to a DHCPREQUEST or DHCPINFORM message sent by the relay agent. The excessive messages can overwhelm the local buffer, leading to dropped packets and a significant disruption of network services.

References

http://www.cisco.com/en/US/products/products_security_res...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/23763

vdb-entryx_refsource_BID

http://www.securitytracker.com/id?1017999

vdb-entryx_refsource_SECTRACK

EPSS Score

6% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 2, 2007
Vulnerability Reserved
May 2, 2007