Executive Summary

Summary
TitleMultiple Vulnerabilities in the Cisco Wireless LAN Controller and Cisco Lightweight Access Points
Informations
Namecisco-sa-20070412-wlcFirst vendor Publication2007-02-19
VendorCiscoLast vendor Modification2008-04-24
Severity (Vendor) N/ARevisionN/A

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score10Attack RangeNetwork
Cvss Impact Score10Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

The Cisco Wireless LAN Controller (WLC) manages Cisco Aironet access points using the Lightweight Access Point Protocol (LWAPP). The WLC contains multiple vulnerabilities that could result in a denial of service (DoS) condition, information disclosure, or access control list changes, or allow an attacker to gain full administrative access.

Original Source

Url : http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml

CPE : Common Platform Enumeration

TypeDescriptionCount
Hardware1
Hardware1
Hardware1
Hardware1
Os3

Open Source Vulnerability Database (OSVDB)

idDescription
34139Cisco Wireless LAN Controller (WLC) Network Processing Unit (NPU) Malformed H...
34138Cisco Wireless LAN Controller (WLC) WLAN ACL Configuration Loading Weakness
34137Cisco Wireless LAN Controller (WLC) Network Processing Unit (NPU) Malformed 8...
34136Cisco Wireless LAN Controller (WLC) Network Processing Unit (NPU) Crafted SNA...
34135Cisco Wireless LAN Controller (WLC) Malformed Ethernet Traffic DoS
34134Cisco Wireless LAN Controller (WLC) Default Community/Private SNMP Strings
34133Cisco Aironet Lightweight Access Points Persistent Admin Password