CVE-2014-7997
Description
The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to cause a denial of service (device restart) by triggering a transition into a recovery state that was intended to involve a network-interface restart but actually involves a full device restart, aka Bug ID CSCtn16281.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ if you've already worked around this in production โ publish your fix to the community-verified tier.
โ Propose a mitigation on Community โ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
References
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7997
- http://www.securitytracker.com/id/1031218
- https://exchange.xforce.ibmcloud.com/vulnerabilities/98691
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7997
- http://www.securitytracker.com/id/1031218
- https://exchange.xforce.ibmcloud.com/vulnerabilities/98691
CWEs
CWE-399
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.