Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2006-0354


Cisco IOS before 12.3-7-JA2 on Aironet Wireless Access Points (WAP) allows remote authenticated users to cause a denial of service (termination of packet passing or termination of client connections) by sending the management interface a large number of spoofed ARP packets, which creates a large ARP table that exhausts memory, aka Bug ID CSCsc16644.


Published

2006-01-22T20:03:00.000

Last Modified

2025-04-03T01:03:51.193

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 5.5 (MEDIUM)

CVSSv2 Vector

AV:A/AC:L/Au:S/C:N/I:N/A:C

  • Access Vector: ADJACENT_NETWORK
  • Access Complexity: LOW
  • Authentication: SINGLE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: COMPLETE
Exploitability Score

5.1

Impact Score

6.9

Weaknesses
  • Type: Primary
    CWE-399

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Hardware cisco aironet_ap1100 * Yes
Hardware cisco aironet_ap1130ag * Yes
Hardware cisco aironet_ap1200 * Yes
Hardware cisco aironet_ap1230ag * Yes
Hardware cisco aironet_ap1240ag * Yes
Hardware cisco aironet_ap1300 * Yes
Hardware cisco aironet_ap1400 * Yes
Hardware cisco aironet_ap350 * Yes

References