Guest

Preview Tool

Cisco Bug: CSCun95520 - Size of ARP Adjacency table makes AP susceptible to ARP DOS attack

Last Modified

Aug 06, 2018

Products (17)

  • Cisco Aironet 3700 Series Access Points
  • Cisco Aironet 1552I Outdoor Access Point
  • Cisco AP802 Integrated Access Point
  • Cisco Aironet 1040 Series Access Point
  • Cisco Aironet 2600i Access Point
  • Cisco Aironet 1600i Access Point
  • Cisco Aironet 1260 Access Point
  • Cisco Aironet 1140 Access Point
  • Cisco Aironet 3500i Access Point
  • Cisco 887VA-W Integrated Services Router
View all products in Bug Search Tool Login Required

Known Affected Releases

15.2(4)JB3a

Description (partial)

Symptom:
A vulnerability in ARP module of Cisco AP could allow an unauthenticated, adjacent attacker to overfill AP's ARP table and cause high CPU and 
memory utilization.

The vulnerability is due to lack of rate limiting of ARP requests being processed by an AP. An attacker could exploit this vulnerability by sending a 
large number of differing ARP packets to an affected device.

Conditions:
Large number of differing ARP packets being processed by an affected device.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.