CVE-2018-0252
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability in the IP Version 4 (IPv4) fragment reassembly function of Cisco 3500, 5500, and 8500 Series Wireless LAN Controller Software could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to a corruption of an internal data structure process that occurs when the affected software reassembles certain IPv4 packets. An attacker could exploit this vulnerability by sending certain malformed IPv4 fragments to an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition. This vulnerability affects all releases of 8.4 until the first fixed release for the 5500 and 8500 Series Wireless LAN Controllers and releases 8.5.103.0 and 8.5.105.0 for the 3500, 5500, and 8500 Series Wireless LAN Controllers. Cisco Bug IDs: CSCvf89222.
Una vulnerabilidad en la funcionalidad de reensamblado de fragmentos IPv4 (IP Version 4) en el software Cisco Series Wireless LAN Controller de las Series 3500, 5500 y 8500 podría permitir que un atacante remoto sin autenticar haga que el dispositivo afectado se reinicie inesperadamente, provocando una denegación de servicio (DoS) en consecuencia. Esta vulnerabilidad se debe a la corrupción de un proceso de estructura de datos interna que ocurre cuando el software afectado reensambla ciertos paquetes IPv4. Un atacante podría explotar esta vulnerabilidad enviando ciertos fragmentos mal formados de IPv4 a un dispositivo afectado. Si se explota con éxito, podría permitir que el atacante consiga que el dispositivo se reinicie, provocando una denegación de servicio (DoS). Esta vulnerabilidad afecta a todos los lanzamientos de 8.4 hasta la primera versión solucionada para Wireless LAN Controllers Series 5500 y 8500 y las versiones 8.5.103.0 y 8.5.105.0 para Wireless LAN Controllers Series 3500, 5500 y 8500. Cisco Bug IDs: CSCvf89222.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-11-27 CVE Reserved
- 2018-05-02 CVE Published
- 2024-03-11 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
- CWE-399: Resource Management Errors
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| http://www.securitytracker.com/id/1040822 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-wlc-ip | 2019-10-09 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Wireless Lan Controller Software Search vendor "Cisco" for product "Wireless Lan Controller Software" | 8.4\(100.0\) Search vendor "Cisco" for product "Wireless Lan Controller Software" and version "8.4\(100.0\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Wireless Lan Controller Software Search vendor "Cisco" for product "Wireless Lan Controller Software" | 8.5\(107.30\) Search vendor "Cisco" for product "Wireless Lan Controller Software" and version "8.5\(107.30\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Wireless Lan Controller Software Search vendor "Cisco" for product "Wireless Lan Controller Software" | 8.5\(107.41\) Search vendor "Cisco" for product "Wireless Lan Controller Software" and version "8.5\(107.41\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Wireless Lan Controller Software Search vendor "Cisco" for product "Wireless Lan Controller Software" | 8.6\(1.108\) Search vendor "Cisco" for product "Wireless Lan Controller Software" and version "8.6\(1.108\)" | - |
Affected
| ||||||