CVE-2014-0704
First published: Thu Mar 06 2014(Updated: )
The IGMP implementation on Cisco Wireless LAN Controller (WLC) devices 4.x, 5.x, 6.x, 7.0 before 7.0.250.0, 7.1, 7.2, and 7.3, when IGMPv3 Snooping is enabled, allows remote attackers to cause a denial of service (memory over-read and device restart) via a crafted field in an IGMPv3 message, aka Bug ID CSCuh33240.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Wireless LAN Controller software 7.1 | =4.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.0.108 | |
| Cisco Wireless LAN Controller software 7.1 | =4.0.155.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.0.155.5 | |
| Cisco Wireless LAN Controller software 7.1 | =4.0.179.8 | |
| Cisco Wireless LAN Controller software 7.1 | =4.0.179.11 | |
| Cisco Wireless LAN Controller software 7.1 | =4.0.196 | |
| Cisco Wireless LAN Controller software 7.1 | =4.0.206.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.0.217.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.0.219.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.1 | |
| Cisco Wireless LAN Controller software 7.1 | =4.1.171.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.1.181.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.1.185.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.1m | |
| Cisco Wireless LAN Controller software 7.1 | =4.2 | |
| Cisco Wireless LAN Controller software 7.1 | =4.2.61.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.2.99.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.2.112.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.2.117.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.2.130.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.2.173.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.2.174.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.2.176.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.2.182.0 | |
| Cisco Wireless LAN Controller software 7.1 | =4.2m | |
| Cisco Wireless LAN Controller software 7.1 | =5.0 | |
| Cisco Wireless LAN Controller software 7.1 | =5.0.148.0 | |
| Cisco Wireless LAN Controller software 7.1 | =5.0.148.2 | |
| Cisco Wireless LAN Controller software 7.1 | =5.1 | |
| Cisco Wireless LAN Controller software 7.1 | =5.1.151.0 | |
| Cisco Wireless LAN Controller software 7.1 | =5.1.152.0 | |
| Cisco Wireless LAN Controller software 7.1 | =5.1.160.0 | |
| Cisco Wireless LAN Controller software 7.1 | =5.2 | |
| Cisco Wireless LAN Controller software 7.1 | =5.2.157.0 | |
| Cisco Wireless LAN Controller software 7.1 | =5.2.169.0 | |
| Cisco Wireless LAN Controller software 7.1 | =6.0 | |
| Cisco Wireless LAN Controller software 7.1 | =6.0.182.0 | |
| Cisco Wireless LAN Controller software 7.1 | =6.0.188.0 | |
| Cisco Wireless LAN Controller software 7.1 | =6.0.196.0 | |
| Cisco Wireless LAN Controller software 7.1 | =6.0.199.0 | |
| Cisco Wireless LAN Controller software 7.1 | =6.0.199.4 | |
| Cisco Wireless LAN Controller software 7.1 | =7.0 | |
| Cisco Wireless LAN Controller software 7.1 | =7.0.98.0 | |
| Cisco Wireless LAN Controller software 7.1 | =7.0.220.0 | |
| Cisco Wireless LAN Controller software 7.1 | =7.0.235.0 | |
| Cisco Wireless LAN Controller software 7.1 | =7.1 | |
| Cisco Wireless LAN Controller software 7.1 | =7.1.91.0 | |
| Cisco Wireless LAN Controller software 7.1 | =7.2 | |
| Cisco Wireless LAN Controller software 7.1 | =7.2.103.0 | |
| Cisco Wireless LAN Controller software 7.1 | =7.2.110.0 | |
| Cisco Wireless LAN Controller software 7.1 | =7.3 | |
| Cisco Wireless LAN Controller software 7.1 | =7.3.101.0 | |
| Cisco Wireless LAN Controller software |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2014-0704?
CVE-2014-0704 has been rated as high severity due to its potential to cause a denial of service on Cisco Wireless LAN Controllers.
How do I fix CVE-2014-0704?
To fix CVE-2014-0704, upgrade your Cisco Wireless LAN Controller software to versions 7.0.250.0 or later.
Which Cisco Wireless LAN Controller versions are affected by CVE-2014-0704?
CVE-2014-0704 affects Cisco Wireless LAN Controller software versions 4.x, 5.x, 6.x, and specific versions of 7.x prior to 7.0.250.0.
What type of attack does CVE-2014-0704 facilitate?
CVE-2014-0704 allows remote attackers to cause a denial of service through a crafted IGMPv3 message.
Is IGMPv3 Snooping the only feature involved in CVE-2014-0704?
Yes, CVE-2014-0704 vulnerability occurs specifically when IGMPv3 Snooping is enabled on the affected Cisco Wireless LAN Controllers.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/references
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco wireless lan controller software 7.1
- version/cisco wireless lan controller software 7.1/4.0
- version/cisco wireless lan controller software 7.1/4.0.108
- version/cisco wireless lan controller software 7.1/4.0.155.0
- version/cisco wireless lan controller software 7.1/4.0.155.5
- version/cisco wireless lan controller software 7.1/4.0.179.8
- version/cisco wireless lan controller software 7.1/4.0.179.11
- version/cisco wireless lan controller software 7.1/4.0.196
- version/cisco wireless lan controller software 7.1/4.0.206.0
- version/cisco wireless lan controller software 7.1/4.0.217.0
- version/cisco wireless lan controller software 7.1/4.0.219.0
- version/cisco wireless lan controller software 7.1/4.1
- version/cisco wireless lan controller software 7.1/4.1.171.0
- version/cisco wireless lan controller software 7.1/4.1.181.0
- version/cisco wireless lan controller software 7.1/4.1.185.0
- version/cisco wireless lan controller software 7.1/4.1m
- version/cisco wireless lan controller software 7.1/4.2
- version/cisco wireless lan controller software 7.1/4.2.61.0
- version/cisco wireless lan controller software 7.1/4.2.99.0
- version/cisco wireless lan controller software 7.1/4.2.112.0
- version/cisco wireless lan controller software 7.1/4.2.117.0
- version/cisco wireless lan controller software 7.1/4.2.130.0
- version/cisco wireless lan controller software 7.1/4.2.173.0
- version/cisco wireless lan controller software 7.1/4.2.174.0
- version/cisco wireless lan controller software 7.1/4.2.176.0
- version/cisco wireless lan controller software 7.1/4.2.182.0
- version/cisco wireless lan controller software 7.1/4.2m
- version/cisco wireless lan controller software 7.1/5.0
- version/cisco wireless lan controller software 7.1/5.0.148.0
- version/cisco wireless lan controller software 7.1/5.0.148.2
- version/cisco wireless lan controller software 7.1/5.1
- version/cisco wireless lan controller software 7.1/5.1.151.0
- version/cisco wireless lan controller software 7.1/5.1.152.0
- version/cisco wireless lan controller software 7.1/5.1.160.0
- version/cisco wireless lan controller software 7.1/5.2
- version/cisco wireless lan controller software 7.1/5.2.157.0
- version/cisco wireless lan controller software 7.1/5.2.169.0
- version/cisco wireless lan controller software 7.1/6.0
- version/cisco wireless lan controller software 7.1/6.0.182.0
- version/cisco wireless lan controller software 7.1/6.0.188.0
- version/cisco wireless lan controller software 7.1/6.0.196.0
- version/cisco wireless lan controller software 7.1/6.0.199.0
- version/cisco wireless lan controller software 7.1/6.0.199.4
- version/cisco wireless lan controller software 7.1/7.0
- version/cisco wireless lan controller software 7.1/7.0.98.0
- version/cisco wireless lan controller software 7.1/7.0.220.0
- version/cisco wireless lan controller software 7.1/7.0.235.0
- version/cisco wireless lan controller software 7.1/7.1
- version/cisco wireless lan controller software 7.1/7.1.91.0
- version/cisco wireless lan controller software 7.1/7.2
- version/cisco wireless lan controller software 7.1/7.2.103.0
- version/cisco wireless lan controller software 7.1/7.2.110.0
- version/cisco wireless lan controller software 7.1/7.3
- version/cisco wireless lan controller software 7.1/7.3.101.0
- canonical/cisco wireless lan controller software