CVE-2002-2208 - Vulnerability Details - OpenCVE

Extended Interior Gateway Routing Protocol (EIGRP), as implemented in Cisco IOS 11.3 through 12.2 and other products, allows remote attackers to cause a denial of service (flood) by sending a large number of spoofed EIGRP neighbor announcements, which results in an ARP storm on the local network.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Cisco	Ios
Extended Interior Gateway Routing Protocol	Extended Interior Gateway Routing Protocol

Configuration 1 [-]

cpe:2.3:a:extended_interior_gateway_routing_protocol:extended_interior_gateway_routing_protocol:1.2:*:*:*:*:*:*:*

Configuration 2 [-]

OR	cpe:2.3:o:cisco:ios:11.3:::::::*
	cpe:2.3:o:cisco:ios:12.0:::::::*
	cpe:2.3:o:cisco:ios:12.1:::::::*
	cpe:2.3:o:cisco:ios:12.2:::::::*

No data.

References

Link	Providers
http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040330.html
http://marc.info/?l=full-disclosure&m=113504451523186&w=2
http://secunia.com/advisories/7766
http://securitytracker.com/id?1005840
http://www.cisco.com/en/US/tech/tk365/technologies_security_notice09186a008011c5e1.html
http://www.cisco.com/warp/public/707/eigrp_issue.pdf
http://www.osvdb.org/18055
http://www.securityfocus.com/archive/1/304034
http://www.securityfocus.com/archive/1/304044
http://www.securityfocus.com/archive/1/419898/100/0/threaded
http://www.securityfocus.com/bid/6443
https://exchange.xforce.ibmcloud.com/vulnerabilities/10903

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-12-21T01:00:00

Updated: 2024-08-08T03:51:17.690Z

Reserved: 2005-12-21T00:00:00

Link: CVE-2002-2208

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2002-12-31T05:00:00.000

Modified: 2025-04-03T01:03:51.193

Link: CVE-2002-2208

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2002-12-19T00:00:00", "descriptions": [{"lang": "en", "value": "Extended Interior Gateway Routing Protocol (EIGRP), as implemented in Cisco IOS 11.3 through 12.2 and other products, allows remote attackers to cause a denial of service (flood) by sending a large number of spoofed EIGRP neighbor announcements, which results in an ARP storm on the local network."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-19T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "18055", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/18055"}, {"name": "20021219 Re: Cisco IOS EIGRP Network DoS", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/304044"}, {"name": "6443", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/6443"}, {"name": "20021220 Cisco's Response to the EIGRP Issue", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/en/US/tech/tk365/technologies_security_notice09186a008011c5e1.html"}, {"name": "7766", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/7766"}, {"name": "1005840", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1005840"}, {"name": "20021219 Cisco IOS EIGRP Network DoS", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/304034"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.cisco.com/warp/public/707/eigrp_issue.pdf"}, {"name": "20051220 Re: Unauthenticated EIGRP DoS", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/419898/100/0/threaded"}, {"name": "20051219 Unauthenticated EIGRP DoS", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040330.html"}, {"name": "20051220 RE: Authenticated EIGRP DoS / Information leak", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://marc.info/?l=full-disclosure&m=113504451523186&w=2"}, {"name": "cisco-ios-eigrp-dos(10903)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10903"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2002-2208", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Extended Interior Gateway Routing Protocol (EIGRP), as implemented in Cisco IOS 11.3 through 12.2 and other products, allows remote attackers to cause a denial of service (flood) by sending a large number of spoofed EIGRP neighbor announcements, which results in an ARP storm on the local network."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "18055", "refsource": "OSVDB", "url": "http://www.osvdb.org/18055"}, {"name": "20021219 Re: Cisco IOS EIGRP Network DoS", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/304044"}, {"name": "6443", "refsource": "BID", "url": "http://www.securityfocus.com/bid/6443"}, {"name": "20021220 Cisco's Response to the EIGRP Issue", "refsource": "CISCO", "url": "http://www.cisco.com/en/US/tech/tk365/technologies_security_notice09186a008011c5e1.html"}, {"name": "7766", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/7766"}, {"name": "1005840", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1005840"}, {"name": "20021219 Cisco IOS EIGRP Network DoS", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/304034"}, {"name": "http://www.cisco.com/warp/public/707/eigrp_issue.pdf", "refsource": "CONFIRM", "url": "http://www.cisco.com/warp/public/707/eigrp_issue.pdf"}, {"name": "20051220 Re: Unauthenticated EIGRP DoS", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/419898/100/0/threaded"}, {"name": "20051219 Unauthenticated EIGRP DoS", "refsource": "FULLDISC", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040330.html"}, {"name": "20051220 RE: Authenticated EIGRP DoS / Information leak", "refsource": "FULLDISC", "url": "http://marc.info/?l=full-disclosure&m=113504451523186&w=2"}, {"name": "cisco-ios-eigrp-dos(10903)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10903"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T03:51:17.690Z"}, "title": "CVE Program Container", "references": [{"name": "18055", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/18055"}, {"name": "20021219 Re: Cisco IOS EIGRP Network DoS", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/304044"}, {"name": "6443", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/6443"}, {"name": "20021220 Cisco's Response to the EIGRP Issue", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://www.cisco.com/en/US/tech/tk365/technologies_security_notice09186a008011c5e1.html"}, {"name": "7766", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/7766"}, {"name": "1005840", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1005840"}, {"name": "20021219 Cisco IOS EIGRP Network DoS", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/304034"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.cisco.com/warp/public/707/eigrp_issue.pdf"}, {"name": "20051220 Re: Unauthenticated EIGRP DoS", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/419898/100/0/threaded"}, {"name": "20051219 Unauthenticated EIGRP DoS", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040330.html"}, {"name": "20051220 RE: Authenticated EIGRP DoS / Information leak", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://marc.info/?l=full-disclosure&m=113504451523186&w=2"}, {"name": "cisco-ios-eigrp-dos(10903)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10903"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2002-2208", "datePublished": "2005-12-21T01:00:00", "dateReserved": "2005-12-21T00:00:00", "dateUpdated": "2024-08-08T03:51:17.690Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:extended_interior_gateway_routing_protocol:extended_interior_gateway_routing_protocol:1.2:*:*:*:*:*:*:*", "matchCriteriaId": "77E7830C-3505-41C5-B073-D2F73261CE17", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios:11.3:*:*:*:*:*:*:*", "matchCriteriaId": "33CCFFC6-9D26-4C39-AF76-0B8FCDE743CF", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.0:*:*:*:*:*:*:*", "matchCriteriaId": "8F86F790-6247-42F2-9487-3D60A2842F52", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.1:*:*:*:*:*:*:*", "matchCriteriaId": "1F2F9EC5-EDA2-4C99-BBF1-2F2C92AACE95", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*", "matchCriteriaId": "E4BC49F2-3DCB-45F0-9030-13F6415EE178", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Extended Interior Gateway Routing Protocol (EIGRP), as implemented in Cisco IOS 11.3 through 12.2 and other products, allows remote attackers to cause a denial of service (flood) by sending a large number of spoofed EIGRP neighbor announcements, which results in an ARP storm on the local network."}], "id": "CVE-2002-2208", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2002-12-31T05:00:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040330.html"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=full-disclosure&m=113504451523186&w=2"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/7766"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1005840"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.cisco.com/en/US/tech/tk365/technologies_security_notice09186a008011c5e1.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.cisco.com/warp/public/707/eigrp_issue.pdf"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/18055"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.securityfocus.com/archive/1/304034"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/archive/1/304044"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/419898/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/6443"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10903"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040330.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=full-disclosure&m=113504451523186&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/7766"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1005840"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.cisco.com/en/US/tech/tk365/technologies_security_notice09186a008011c5e1.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.cisco.com/warp/public/707/eigrp_issue.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/18055"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.securityfocus.com/archive/1/304034"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.securityfocus.com/archive/1/304044"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/419898/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/6443"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10903"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}