CVE-2004-1111

CVE Database · CVE-2004-1111

CVE-2004-1111

· N/AModified

CVSS v3.1

N/A

EPSS

2.34%

Published

Jan 10, 2005

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the "no service dhcp" command, keep undeliverable DHCP packets in the queue instead of dropping them, which allows remote attackers to cause a denial of service (dropped traffic) via multiple undeliverable DHCP packets that exceed the input queue size.

Affected Products (17)

cisco · iosvulnerable

cisco · multiservice_platform_2650vulnerable

cisco · multiservice_platform_2650xmvulnerable

· multiservice_platform_2651

References (12)

http://www.ciac.org/ciac/bulletins/p-034.shtml

http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml

http://www.kb.cert.org/vuls/id/630104

Third Party AdvisoryUS Government Resource

http://www.us-cert.gov/cas/techalerts/TA04-316A.html

US Government Resource

https://exchange.xforce.ibmcloud.com/vulnerabilities/18021

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632

http://www.ciac.org/ciac/bulletins/p-034.shtml

http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml

http://www.kb.cert.org/vuls/id/630104

KEV Catalog EPSS Scores Vendors All CVEs