CVE-2013-5499 - The remember feature in the DHCP server in Cisco IOS allows remote attackers to cause a denial of se

CVE-2013-5499

Summary

The remember feature in the DHCP server in Cisco IOS allows remote attackers to cause a denial of service (device reload) by acquiring a lease and then sending a DHCPRELEASE message, aka Bug ID CSCuh46822.

References

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5499

Vulnerable Configurations

cpe:2.3:o:cisco:ios:-:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:-:*:*:*:*:*:*:*

CVSS

Base:	5.7 (as of 10-10-2013 - 18:10)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
ADJACENT_NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	COMPLETE

cvss-vector via4

AV:A/AC:M/Au:N/C:N/I:N/A:C

refmap via4

cisco

20131007 Cisco IOS Software DHCP Server remember Functionality Vulnerability

Last major update

10-10-2013 - 18:10

Published

10-10-2013 - 10:55

Last modified

10-10-2013 - 18:10