CVE-2018-0441

A vulnerability in the 802.11r Fast Transition feature set of Cisco IOS Access Points (APs) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a corruption of certain timer mechanisms triggered by specific roaming events. This corruption will eventually cause a timer crash. An attacker could exploit this vulnerability by sending malicious reassociation events multiple times to the same AP in a short period of time, causing a DoS condition on the affected AP.
Configurations

Configuration 1

cpe:2.3:o:cisco:access_points:15.3(3)jd:*:*:*:*:*:*:*
cpe:2.3:o:cisco:access_points:8.0(140.0):*:*:*:*:*:*:*
cpe:2.3:o:cisco:access_points:8.2(141.0):*:*:*:*:*:*:*
cpe:2.3:o:cisco:access_points:8.2(151.0):*:*:*:*:*:*:*
cpe:2.3:o:cisco:access_points:8.3(102.0):*:*:*:*:*:*:*
cpe:2.3:o:cisco:access_points:8.3(112.0):*:*:*:*:*:*:*
cpe:2.3:o:cisco:access_points:8.3(114.74):*:*:*:*:*:*:*
cpe:2.3:o:cisco:access_points:*:*:*:*:*:*:*:*
cpe:2.3:o:cisco:access_points:*:*:*:*:*:*:*:*

Information

Published : 2018-10-17 10:29

Updated : 2019-10-09 11:32


NVD link : CVE-2018-0441

Mitre link : CVE-2018-0441

Products Affected
No products.
CWE