CVE-2014-0705

EUVD-2014-0736
The multicast listener discovery (MLD) service on Cisco Wireless LAN Controller (WLC) devices 7.2, 7.3, 7.4 before 7.4.121.0, and 7.5, when MLDv2 Snooping is enabled, allows remote attackers to cause a denial of service (device restart) via a malformed IPv6 MLDv2 packet, aka Bug ID CSCuh74233.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.1 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 60%
Affected Products (NVD)
VendorProductVersion
ciscowireless_lan_controller_software
7.2
ciscowireless_lan_controller_software
7.2.103.0
ciscowireless_lan_controller_software
7.2.110.0
ciscowireless_lan_controller_software
7.3
ciscowireless_lan_controller_software
7.3.101.0
ciscowireless_lan_controller_software
7.4.100.0
ciscowireless_lan_controller_software
7.4.100.60
ciscowireless_lan_controller_software
7.5
ciscowireless_lan_controller
*
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140305-wlc
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140305-wlc