1. Home
  2. CVE Database
  3. CVE-2006-0354
MEDIUM · 5.5

CVE-2006-0354

Cisco IOS before 12.3-7-JA2 on Aironet Wireless Access Points (WAP) allows remote authenticated users to cause a denial of service (termination of packet passing or termination of client connections) ...

Vulnerability Description

Cisco IOS before 12.3-7-JA2 on Aironet Wireless Access Points (WAP) allows remote authenticated users to cause a denial of service (termination of packet passing or termination of client connections) by sending the management interface a large number of spoofed ARP packets, which creates a large ARP table that exhausts memory, aka Bug ID CSCsc16644.

CVSS Score

5.5

MEDIUM

AV:A/AC:L/Au:S/C:N/I:N/A:C
Confidentiality
NONE
Integrity
NONE
Availability
COMPLETE

Affected Products

VendorProductVersions
CiscoAironet Ap1100All versions
CiscoAironet Ap1130AgAll versions
CiscoAironet Ap1200All versions
CiscoAironet Ap1230AgAll versions
CiscoAironet Ap1240AgAll versions
CiscoAironet Ap1300All versions
CiscoAironet Ap1400All versions
CiscoAironet Ap350All versions

Related Weaknesses (CWE)

CWE-399

References

FAQ

What is CVE-2006-0354?

CVE-2006-0354 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Cisco IOS before 12.3-7-JA2 on Aironet Wireless Access Points (WAP) allows remote authenticated users to cause a denial of service (termination of packet passing or termination of client connections) ...

How severe is CVE-2006-0354?

CVE-2006-0354 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-0354?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Aironet Ap1100, Cisco Aironet Ap1130Ag, Cisco Aironet Ap1200, Cisco Aironet Ap1230Ag, Cisco Aironet Ap1240Ag.