CVE-2004-1111 - Vulnerability Details

Vendors	Products
Cisco	7200 Router 7300 Router 7500 Router 7600 Router Catalyst 7600 Ios Multiservice Platform 2650 Multiservice Platform 2650xm Multiservice Platform 2651 Multiservice Platform 2651xm

Link	Providers
http://www.ciac.org/ciac/bulletins/p-034.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml
http://www.kb.cert.org/vuls/id/630104
http://www.us-cert.gov/cas/techalerts/TA04-316A.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/18021
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2004-11-10T00:00:00", "descriptions": [{"lang": "en", "value": "Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the \"no service dhcp\" command, keep undeliverable DHCP packets in the queue instead of dropping them, which allows remote attackers to cause a denial of service (dropped traffic) via multiple undeliverable DHCP packets that exceed the input queue size."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-10-10T00:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "oval:org.mitre.oval:def:5632", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632"}, {"name": "TA04-316A", "tags": ["third-party-advisory", "x_refsource_CERT"], "url": "http://www.us-cert.gov/cas/techalerts/TA04-316A.html"}, {"name": "20041110 Cisco Security Advisory: Cisco IOS DHCP Blocked Interface Denial-of-Service", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml"}, {"name": "VU#630104", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/630104"}, {"name": "cisco-ios-dhcp-dos(18021)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18021"}, {"name": "P-034", "tags": ["third-party-advisory", "government-resource", "x_refsource_CIAC"], "url": "http://www.ciac.org/ciac/bulletins/p-034.shtml"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2004-1111", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the \"no service dhcp\" command, keep undeliverable DHCP packets in the queue instead of dropping them, which allows remote attackers to cause a denial of service (dropped traffic) via multiple undeliverable DHCP packets that exceed the input queue size."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "oval:org.mitre.oval:def:5632", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632"}, {"name": "TA04-316A", "refsource": "CERT", "url": "http://www.us-cert.gov/cas/techalerts/TA04-316A.html"}, {"name": "20041110 Cisco Security Advisory: Cisco IOS DHCP Blocked Interface Denial-of-Service", "refsource": "CISCO", "url": "http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml"}, {"name": "VU#630104", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/630104"}, {"name": "cisco-ios-dhcp-dos(18021)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18021"}, {"name": "P-034", "refsource": "CIAC", "url": "http://www.ciac.org/ciac/bulletins/p-034.shtml"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T00:39:00.865Z"}, "title": "CVE Program Container", "references": [{"name": "oval:org.mitre.oval:def:5632", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632"}, {"name": "TA04-316A", "tags": ["third-party-advisory", "x_refsource_CERT", "x_transferred"], "url": "http://www.us-cert.gov/cas/techalerts/TA04-316A.html"}, {"name": "20041110 Cisco Security Advisory: Cisco IOS DHCP Blocked Interface Denial-of-Service", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml"}, {"name": "VU#630104", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/630104"}, {"name": "cisco-ios-dhcp-dos(18021)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18021"}, {"name": "P-034", "tags": ["third-party-advisory", "government-resource", "x_refsource_CIAC", "x_transferred"], "url": "http://www.ciac.org/ciac/bulletins/p-034.shtml"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2004-1111", "datePublished": "2004-12-01T05:00:00", "dateReserved": "2004-11-30T00:00:00", "dateUpdated": "2024-08-08T00:39:00.865Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2004-11-10T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the "no service dhcp" command, keep undeliverable DHCP packets in the queue instead of dropping them, which allows remote attackers to cause a denial of service (dropped traffic) via multiple undeliverable DHCP packets that exceed the input queue size. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2017-10-10T00:57:01 (string)

orgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

shortName : mitre (string)

}

references : [ »

0 : { »

name : oval:org.mitre.oval:def:5632 (string)

tags : [ »

0 : vdb-entry (string)

1 : signature (string)

2 : x_refsource_OVAL (string)

]

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632 (string)

}

1 : { »

name : TA04-316A (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_CERT (string)

]

url : http://www.us-cert.gov/cas/techalerts/TA04-316A.html (string)

}

2 : { »

name : 20041110 Cisco Security Advisory: Cisco IOS DHCP Blocked Interface Denial-of-Service (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_CISCO (string)

]

url : http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml (string)

}

3 : { »

name : VU#630104 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_CERT-VN (string)

]

url : http://www.kb.cert.org/vuls/id/630104 (string)

}

4 : { »

name : cisco-ios-dhcp-dos(18021) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

]

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/18021 (string)

}

5 : { »

name : P-034 (string)

tags : [ »

0 : third-party-advisory (string)

1 : government-resource (string)

2 : x_refsource_CIAC (string)

]

url : http://www.ciac.org/ciac/bulletins/p-034.shtml (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : cve@mitre.org (string)

ID : CVE-2004-1111 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the "no service dhcp" command, keep undeliverable DHCP packets in the queue instead of dropping them, which allows remote attackers to cause a denial of service (dropped traffic) via multiple undeliverable DHCP packets that exceed the input queue size. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : oval:org.mitre.oval:def:5632 (string)

refsource : OVAL (string)

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632 (string)

}

1 : { »

name : TA04-316A (string)

refsource : CERT (string)

url : http://www.us-cert.gov/cas/techalerts/TA04-316A.html (string)

}

2 : { »

name : 20041110 Cisco Security Advisory: Cisco IOS DHCP Blocked Interface Denial-of-Service (string)

refsource : CISCO (string)

url : http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml (string)

}

3 : { »

name : VU#630104 (string)

refsource : CERT-VN (string)

url : http://www.kb.cert.org/vuls/id/630104 (string)

}

4 : { »

name : cisco-ios-dhcp-dos(18021) (string)

refsource : XF (string)

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/18021 (string)

}

5 : { »

name : P-034 (string)

refsource : CIAC (string)

url : http://www.ciac.org/ciac/bulletins/p-034.shtml (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-08T00:39:00.865Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

name : oval:org.mitre.oval:def:5632 (string)

tags : [ »

0 : vdb-entry (string)

1 : signature (string)

2 : x_refsource_OVAL (string)

3 : x_transferred (string)

]

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632 (string)

}

1 : { »

name : TA04-316A (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_CERT (string)

2 : x_transferred (string)

]

url : http://www.us-cert.gov/cas/techalerts/TA04-316A.html (string)

}

2 : { »

name : 20041110 Cisco Security Advisory: Cisco IOS DHCP Blocked Interface Denial-of-Service (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_CISCO (string)

2 : x_transferred (string)

]

url : http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml (string)

}

3 : { »

name : VU#630104 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_CERT-VN (string)

2 : x_transferred (string)

]

url : http://www.kb.cert.org/vuls/id/630104 (string)

}

4 : { »

name : cisco-ios-dhcp-dos(18021) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

2 : x_transferred (string)

]

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/18021 (string)

}

5 : { »

name : P-034 (string)

tags : [ »

0 : third-party-advisory (string)

1 : government-resource (string)

2 : x_refsource_CIAC (string)

3 : x_transferred (string)

]

url : http://www.ciac.org/ciac/bulletins/p-034.shtml (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

assignerShortName : mitre (string)

cveId : CVE-2004-1111 (string)

datePublished : 2004-12-01T05:00:00 (string)

dateReserved : 2004-11-30T00:00:00 (string)

dateUpdated : 2024-08-08T00:39:00.865Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios:12.2\\(14\\)sz:*:*:*:*:*:*:*", "matchCriteriaId": "C6D9BA55-F193-4BCA-ACC2-BBC892E9D7E4", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(18\\)ew:*:*:*:*:*:*:*", "matchCriteriaId": "9E49B392-5366-422D-A10E-EE4F3A33C4B9", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(18\\)ewa:*:*:*:*:*:*:*", "matchCriteriaId": "7EF707A6-5834-4295-8B38-17F279D49C82", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(18\\)s:*:*:*:*:*:*:*", "matchCriteriaId": "2D0E67EE-AF42-4B53-B70A-45562CE164D0", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(18\\)se:*:*:*:*:*:*:*", "matchCriteriaId": "9E319ADC-C636-4933-BD50-B613677AD4C0", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(18\\)sv:*:*:*:*:*:*:*", "matchCriteriaId": "1A15042D-EB07-4754-8144-947CDE669CAE", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(18\\)sw:*:*:*:*:*:*:*", "matchCriteriaId": "E58F4903-E834-4476-876F-8C144BD93D4A", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(20\\)ew:*:*:*:*:*:*:*", "matchCriteriaId": "955BF110-FFBE-4368-BE06-21AC794C53AB", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:multiservice_platform_2650:*:*:*:*:*:*:*:*", "matchCriteriaId": "92D41983-E6A8-4481-AA08-42DC92EC57EC", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:multiservice_platform_2650xm:*:*:*:*:*:*:*:*", "matchCriteriaId": "9A6E0CA8-C89C-4CDD-8063-B10E6C122F43", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:multiservice_platform_2651:*:*:*:*:*:*:*:*", "matchCriteriaId": "19293B13-7FB1-4604-923D-E8760902E8BD", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:multiservice_platform_2651xm:*:*:*:*:*:*:*:*", "matchCriteriaId": "E6E13135-48E1-4D8C-9C0D-4EBD9A858CBD", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:7200_router:*:*:*:*:*:*:*:*", "matchCriteriaId": "60DEA083-B9BC-42DB-A4F7-986A5A185DE6", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:7300_router:*:*:*:*:*:*:*:*", "matchCriteriaId": "239E1E03-7F82-48CE-943A-9228C9EDCF9C", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:7500_router:*:*:*:*:*:*:*:*", "matchCriteriaId": "FCFAA111-F831-4BC9-BCD7-246ED6C0F3FF", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:7600_router:*:*:*:*:*:*:*:*", "matchCriteriaId": "9097F459-1AE3-4924-8E81-046F84FBB041", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:catalyst_7600:*:*:sup720_msfc3:*:*:*:*:*", "matchCriteriaId": "6D4F49E8-9C23-422C-9913-9C11E7F9BF9B", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the \"no service dhcp\" command, keep undeliverable DHCP packets in the queue instead of dropping them, which allows remote attackers to cause a denial of service (dropped traffic) via multiple undeliverable DHCP packets that exceed the input queue size."}], "id": "CVE-2004-1111", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-01-10T05:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://www.ciac.org/ciac/bulletins/p-034.shtml"}, {"source": "cve@mitre.org", "url": "http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/630104"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/cas/techalerts/TA04-316A.html"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18021"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.ciac.org/ciac/bulletins/p-034.shtml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/630104"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/cas/techalerts/TA04-316A.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18021"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:cisco:ios:12.2\(14\)sz:*:*:*:*:*:*:* (string)

matchCriteriaId : C6D9BA55-F193-4BCA-ACC2-BBC892E9D7E4 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:cisco:ios:12.2\(18\)ew:*:*:*:*:*:*:* (string)

matchCriteriaId : 9E49B392-5366-422D-A10E-EE4F3A33C4B9 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:cisco:ios:12.2\(18\)ewa:*:*:*:*:*:*:* (string)

matchCriteriaId : 7EF707A6-5834-4295-8B38-17F279D49C82 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:cisco:ios:12.2\(18\)s:*:*:*:*:*:*:* (string)

matchCriteriaId : 2D0E67EE-AF42-4B53-B70A-45562CE164D0 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:cisco:ios:12.2\(18\)se:*:*:*:*:*:*:* (string)

matchCriteriaId : 9E319ADC-C636-4933-BD50-B613677AD4C0 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:cisco:ios:12.2\(18\)sv:*:*:*:*:*:*:* (string)

matchCriteriaId : 1A15042D-EB07-4754-8144-947CDE669CAE (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:cisco:ios:12.2\(18\)sw:*:*:*:*:*:*:* (string)

matchCriteriaId : E58F4903-E834-4476-876F-8C144BD93D4A (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:cisco:ios:12.2\(20\)ew:*:*:*:*:*:*:* (string)

matchCriteriaId : 955BF110-FFBE-4368-BE06-21AC794C53AB (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:cisco:multiservice_platform_2650:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 92D41983-E6A8-4481-AA08-42DC92EC57EC (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:h:cisco:multiservice_platform_2650xm:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 9A6E0CA8-C89C-4CDD-8063-B10E6C122F43 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:h:cisco:multiservice_platform_2651:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 19293B13-7FB1-4604-923D-E8760902E8BD (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:h:cisco:multiservice_platform_2651xm:*:*:*:*:*:*:*:* (string)

matchCriteriaId : E6E13135-48E1-4D8C-9C0D-4EBD9A858CBD (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

1 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:cisco:7200_router:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 60DEA083-B9BC-42DB-A4F7-986A5A185DE6 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:h:cisco:7300_router:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 239E1E03-7F82-48CE-943A-9228C9EDCF9C (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:h:cisco:7500_router:*:*:*:*:*:*:*:* (string)

matchCriteriaId : FCFAA111-F831-4BC9-BCD7-246ED6C0F3FF (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:h:cisco:7600_router:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 9097F459-1AE3-4924-8E81-046F84FBB041 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:h:cisco:catalyst_7600:*:*:sup720_msfc3:*:*:*:*:* (string)

matchCriteriaId : 6D4F49E8-9C23-422C-9913-9C11E7F9BF9B (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the "no service dhcp" command, keep undeliverable DHCP packets in the queue instead of dropping them, which allows remote attackers to cause a denial of service (dropped traffic) via multiple undeliverable DHCP packets that exceed the input queue size. (string)

}

]

id : CVE-2004-1111 (string)

lastModified : 2025-04-03T01:03:51.193 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : PARTIAL (string)

baseScore : 5 (number)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

vectorString : AV:N/AC:L/Au:N/C:N/I:N/A:P (string)

version : 2.0 (string)

}

exploitabilityScore : 10 (number)

impactScore : 2.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

}

published : 2005-01-10T05:00:00.000 (string)

references : [ »

0 : { »

source : cve@mitre.org (string)

url : http://www.ciac.org/ciac/bulletins/p-034.shtml (string)

}

1 : { »

source : cve@mitre.org (string)

url : http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml (string)

}

2 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Third Party Advisory (string)

1 : US Government Resource (string)

]

url : http://www.kb.cert.org/vuls/id/630104 (string)

}

3 : { »

source : cve@mitre.org (string)

tags : [ »

0 : US Government Resource (string)

]

url : http://www.us-cert.gov/cas/techalerts/TA04-316A.html (string)

}

4 : { »

source : cve@mitre.org (string)

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/18021 (string)

}

5 : { »

source : cve@mitre.org (string)

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632 (string)

}

6 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.ciac.org/ciac/bulletins/p-034.shtml (string)

}

7 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml (string)

}

8 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

1 : US Government Resource (string)

]

url : http://www.kb.cert.org/vuls/id/630104 (string)

}

9 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : US Government Resource (string)

]

url : http://www.us-cert.gov/cas/techalerts/TA04-316A.html (string)

}

10 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/18021 (string)

}

11 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632 (string)

}

]

sourceIdentifier : cve@mitre.org (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : NVD-CWE-Other (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object