Cisco PIX/ASA DHCP Relay Remote Denial of Service Vulnerability
BID:23763
Info
Cisco PIX/ASA DHCP Relay Remote Denial of Service Vulnerability
| Bugtraq ID: | 23763 |
| Class: | Design Error |
| CVE: |
CVE-2007-2461 |
| Remote: | Yes |
| Local: | No |
| Published: | May 02 2007 12:00AM |
| Updated: | May 07 2015 05:39PM |
| Credit: | Grant Deffenbaugh and Lisa Sittler of CERT/CC discovered this issue. |
| Vulnerable: |
Cisco PIX/ASA 7.2(2.14) Cisco PIX/ASA 7.2(2.10) Cisco PIX/ASA 7.2(1) |
| Not Vulnerable: |
Cisco PIX/ASA 7.2(2.15) |
Discussion
Cisco PIX/ASA DHCP Relay Remote Denial of Service Vulnerability
Cisco PIX and ASA are prone to a remote denial-of-service vulnerability because the software fails to properly handle DHCP packets in certain circumstances.
Successfully exploiting this issue allows attackers with access to a LAN served by a vulnerable device to consume excessive memory resources. This will eventually cause the device to stop forwarding further packets, denying service to legitimate users.
This vulnerability affects software versions 7.2(1) through 7.2(2.14) for Cisco PIX and ASA devices.
This issue is being tracked by Cisco Bug ID CSCsh50277.
Cisco PIX and ASA are prone to a remote denial-of-service vulnerability because the software fails to properly handle DHCP packets in certain circumstances.
Successfully exploiting this issue allows attackers with access to a LAN served by a vulnerable device to consume excessive memory resources. This will eventually cause the device to stop forwarding further packets, denying service to legitimate users.
This vulnerability affects software versions 7.2(1) through 7.2(2.14) for Cisco PIX and ASA devices.
This issue is being tracked by Cisco Bug ID CSCsh50277.
Exploit / POC
Cisco PIX/ASA DHCP Relay Remote Denial of Service Vulnerability
Attackers use readily available network utilities to exploit this issue.
Attackers use readily available network utilities to exploit this issue.
Solution / Fix
Cisco PIX/ASA DHCP Relay Remote Denial of Service Vulnerability
Solution:
Cisco has released an advisory along with fixes to address this issue. Please see the referenced advisory for information on obtaining and applying fixes.
Solution:
Cisco has released an advisory along with fixes to address this issue. Please see the referenced advisory for information on obtaining and applying fixes.
References
Cisco PIX/ASA DHCP Relay Remote Denial of Service Vulnerability
References:
References:
- Cisco PIX Firewall Product Homepage (Cisco Systems)
- Cisco Security Response: DHCP Relay Agent Vulnerability in Cisco PIX and ASA App (Cisco)
- Vulnerability Note VU#530057 (US-CERT)