Back to search
CVE-2007-2461
Published: May 2, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
The DHCP relay agent in Cisco Adaptive Security Appliance (ASA) and PIX 7.2 allows remote attackers to cause a denial of service (dropped packets) via a DHCPREQUEST or DHCPINFORM message that causes multiple DHCPACK messages to be sent from DHCP servers to the agent, which consumes the memory allocated for a local buffer. NOTE: this issue only occurs when multiple DHCP servers are used.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20070502 DHCP Relay Agent Vulnerability in Cisco PIX and ASA Appliances
vendor-advisory
x_refsource_CISCO
23763
vdb-entry
x_refsource_BID
1017999
vdb-entry
x_refsource_SECTRACK
VU#530057
third-party-advisory
x_refsource_CERT-VN
ADV-2007-1635
vdb-entry
x_refsource_VUPEN
1018000
vdb-entry
x_refsource_SECTRACK
cisco-asa-dhcp-dos(34026)
vdb-entry
x_refsource_XF
35330
vdb-entry
x_refsource_OSVDB
25109
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now