Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2009-1164
HistoryJul 29, 2009 - 5:30 p.m.

CVE-2009-1164

2009-07-2917:30:01
CWE-399
[email protected]
web.nvd.nist.gov
1

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.6%

JSON

The administrative web interface on the Cisco Wireless LAN Controller (WLC) platform 4.2 before 4.2.205.0 and 5.x before 5.2.178.0, as used in Cisco 1500 Series, 2000 Series, 2100 Series, 4100 Series, 4200 Series, and 4400 Series Wireless Services Modules (WiSM), WLC Modules for Integrated Services Routers, and Catalyst 3750G Integrated Wireless LAN Controllers, allows remote attackers to cause a denial of service (device reload) via a malformed response to a (1) HTTP or (2) HTTPS authentication request, aka Bug ID CSCsx03715.

Affected configurations

NVD
Node
ciscocatalyst_3750g
OR
ciscocisco_1500_wireless_lan_controllerMatch4.2
OR
ciscocisco_1500_wireless_lan_controllerMatch5.0
OR
ciscocisco_1500_wireless_lan_controllerMatch5.1
OR
ciscocisco_1500_wireless_lan_controllerMatch5.2
OR
ciscocisco_2000_wireless_lan_controllerMatch4.2
OR
ciscocisco_2000_wireless_lan_controllerMatch5.0
OR
ciscocisco_2000_wireless_lan_controllerMatch5.1
OR
ciscocisco_2000_wireless_lan_controllerMatch5.2
OR
ciscocisco_2100_wireless_lan_controllerMatch4.2
OR
ciscocisco_2100_wireless_lan_controllerMatch5.0
OR
ciscocisco_2100_wireless_lan_controllerMatch5.1
OR
ciscocisco_2100_wireless_lan_controllerMatch5.2
OR
ciscocisco_4100_wireless_lan_controllerMatch4.2
OR
ciscocisco_4100_wireless_lan_controllerMatch5.0
OR
ciscocisco_4100_wireless_lan_controllerMatch5.1
OR
ciscocisco_4100_wireless_lan_controllerMatch5.2
OR
ciscocisco_4200_wireless_lan_controllerMatch4.2
OR
ciscocisco_4200_wireless_lan_controllerMatch5.0
OR
ciscocisco_4200_wireless_lan_controllerMatch5.1
OR
ciscocisco_4200_wireless_lan_controllerMatch5.2
OR
ciscocisco_4400_wireless_lan_controllerMatch4.2
OR
ciscocisco_4400_wireless_lan_controllerMatch5.0
OR
ciscocisco_4400_wireless_lan_controllerMatch5.1
OR
ciscocisco_4400_wireless_lan_controllerMatch5.2

Related

cve 1
prion 1
cvelist 1
checkpoint_advisories 1
nessus 1
securityvulns 2
cisco 1
cve
cve
CVE-2009-1164
2009-07-29 17:30:01
prion
prion
Authentication flaw
2009-07-29 17:30:00
cvelist
cvelist
CVE-2009-1164
2009-07-29 17:00:00
checkpoint_advisories
checkpoint_advisories
Update Protection against Cisco IOS Administrative Interface HTTP Authentication
2009-07-31 00:00:00
nessus
nessus
Multiple Vulnerabilities in Cisco Wireless LAN Controllers (cisco-sa-20090727-wlc)
2013-09-25 00:00:00
securityvulns
securityvulns
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers
2009-07-27 00:00:00
Cisco Wireless LAN Controllers multiple security vulnerabilities
2009-07-27 00:00:00
cisco
cisco
Multiple Vulnerabilities in Cisco Wireless LAN Controllers
2009-07-27 16:00:00

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.6%

JSON
Related for NVD:CVE-2009-1164
cve1prion1cvelist1checkpoint_advisories1nessus1securityvulns2cisco1