VDB
CVE-2006-0354
CVE-2006-0354
PUBLISHED
CVSS 5.5 MEDIUM
Cisco IOS before 12.3-7-JA2 on Aironet Wireless Access Points (WAP) allows remote authenticated users to cause a denial of service (termination of packet passing or termination of client connections) by sending the management interface a large number of spoofed ARP packets, which creates a large ARP table that exhausts memory, aka Bug ID CSCsc16644.
EPSS 9.28% · 92.9th percentile
Risk Scores
CVSS 2.0
5.5
EPSS Score
9.28%
92.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| cisco | aironet_ap1300 | |
| cisco | aironet_ap1230ag | |
| cisco | aironet_ap1240ag | |
| cisco | aironet_ap1200 | |
| cisco | aironet_ap1130ag | |
| n/a | n/a | n/a |
| cisco | aironet_ap1400 | |
| cisco | aironet_ap1100 | |
| cisco | aironet_ap350 |
Exploit Intelligence
- 20060112 Access Point Memory Exhaustion from ARP Attacks (cve.org)
- 339 (circl)
- oval:org.mitre.oval:def:5680 (circl)
- 22375 (circl)
- ADV-2006-0176 (circl)
- 18430 (circl)
- cisco-aironet-arp-dos(24086) (circl)
- 16217 (circl)
- 1015483 (circl)
Timeline
- Jan 12, 2006 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
References
- 339 third-party-advisory
- oval:org.mitre.oval:def:5680 vdb
- 22375 vdb
- ADV-2006-0176 vdb
- 18430 third-party-advisory
- 20060112 Access Point Memory Exhaustion from ARP Attacks vendor-advisory
- cisco-aironet-arp-dos(24086) vdb
- 16217 vdb
- 1015483 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2006-0354 advisory