Lucene search

K

[email protected]NVD:CVE-2012-5991

HistoryDec 19, 2012 - 11:56 a.m.

CVE-2012-5991

2012-12-1911:56:00

[email protected]

web.nvd.nist.gov

6.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:N/I:N/A:C

6.2 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

45.3%

screens/base/web_auth_custom.html on Cisco Wireless LAN Controller (WLC) devices with software 7.2.110.0 allows remote authenticated users to cause a denial of service (device reload) via a certain buttonClicked value in an internal webauth_type request, aka Bug ID CSCud50209.

Affected configurations

NVD

Node

ciscowireless_lan_controller_softwareMatch7.2.110.0

AND

cisco2000_wireless_lan_controller

OR

cisco2100_wireless_lan_controller

OR

cisco2500_wireless_lan_controllerMatch-

OR

cisco4100_wireless_lan_controller

OR

cisco4400_wireless_lan_controller

OR

cisco5500_wireless_lan_controllerMatch-

OR

cisco7500_wireless_lan_controllerMatch-

OR

cisco8500_wireless_lan_controllerMatch-

References

infosec42.blogspot.dk/2012/12/cisco-wlc-csrf-dos-and-persistent-xss.html

6.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:N/I:N/A:C

6.2 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

45.3%

Related for NVD:CVE-2012-5991

cve1 cisco1 prion1 cvelist1 packetstorm1 exploitpack1 seebug1 exploitdb1