215 matches found
Cisco Meshed Wireless LAN Controller Impersonation Vulnerability
A vulnerability in the mesh code of Cisco Wireless LAN Controller WLC software could allow an unauthenticated, remote attacker to impersonate a WLC in a meshed topology. The vulnerability is due to insufficient authentication of the parent access point in a mesh configuration. An attacker could...
CVE-2016-7560
The rsyncd server in Fortinet FortiWLC 6.1-2-29 and earlier, 7.0-9-1, 7.0-10-0, 8.0-5-0, 8.1-2-0, and 8.2-4-0 has a hardcoded rsync account, which allows remote attackers to read or write to arbitrary files via unspecified vectors...
CVE-2016-6375
Cisco Wireless LAN Controller WLC devices before 8.0.140.0, 8.1.x and 8.2.x before 8.2.121.0, and 8.3.x before 8.3.102.0 allow remote attackers to cause a denial of service device reload by sending crafted Inter-Access Point Protocol IAPP packets and then sending a traffic stream metrics TSM...
CVE-2016-6375
Cisco Wireless LAN Controller WLC devices before 8.0.140.0, 8.1.x and 8.2.x before 8.2.121.0, and 8.3.x before 8.3.102.0 allow remote attackers to cause a denial of service device reload by sending crafted Inter-Access Point Protocol IAPP packets and then sending a traffic stream metrics TSM...
CVE-2016-6375
CVE-2016-6375 affects Cisco Wireless LAN Controller (WLC) devices: before 8.0.140.0, 8.1.x, and 8.2.x before 8.2.121.0, and 8.3.x before 8.3.102.0. An unauthenticated, adjacent attacker can cause a DoS by sending crafted Inter-Access Point Protocol (IAPP) packets, followed by an SNMP TSM informat...
CVE-2016-6376
Cisco WLC CVE-2016-6376 affects the Adaptive Wireless Intrusion Prevention System (wIPS) by failing to validate wIPS packets, enabling an unauthenticated, adjacent attacker to trigger a DoS and device restart. Affected firmware ranges include WLCs prior to 8.0.140.0, 8.1.x, 8.2.x prior to 8.2.121...
CVE-2016-1460
Cisco WLC vulnerability CVE-2016-1460 affects WLC firmware 7.4(121.0) and 8.0(0.30220.385). The flaw is in the wireless frame management service where insufficient handling of crafted wireless management frames could allow an unauthenticated, adjacent attacker to cause a DoS on the device. Impact...
Cisco Wireless LAN Controller 802.11i Management Frame DoS
According to its self-reported version, the remote Cisco Wireless LAN Controller WLC device is affected by a denial of service vulnerability due to not discarding malformed values within an 802.11i management frame received from a wireless client. An unauthenticated, adjacent attacker can exploit...
Design/Logic Flaw
Cisco Wireless LAN Controller WLC Software 7.4 before 7.4.130.0MD and 7.5, 7.6, and 8.0 before 8.0.110.0ED allows remote attackers to cause a denial of service device reload via crafted Bonjour traffic, aka Bug ID CSCur66908...
CVE-2016-1362
Cisco AireOS 4.1 through 7.4.120.0, 7.5.x, and 7.6.100.0 on Wireless LAN Controller WLC devices allows remote attackers to cause a denial of service device reload via a crafted HTTP request, aka Bug ID CSCun86747...
CVE-2016-1364
Cisco Wireless LAN Controller WLC Software 7.4 before 7.4.130.0MD and 7.5, 7.6, and 8.0 before 8.0.110.0ED allows remote attackers to cause a denial of service device reload via crafted Bonjour traffic, aka Bug ID CSCur66908...
CVE-2016-1363
Cisco Wireless LAN Controller (WLC) Software 7.2–7.4 before 7.4.140.0(MD) and 7.5–8.0 before 8.0.115.0(ED) are affected by a buffer overflow in the HTTP redirection function. The vulnerability allows unauthenticated remote attackers to craft HTTP requests that could cause a buffer overflow, poten...
CVE-2016-1364
Cisco Wireless LAN Controller (WLC) Software is affected by CVE-2016-1364 due to a flaw in the Bonjour task manager that lets unauthenticated remote attackers cause a device reload via crafted Bonjour traffic. Affected versions are WLC 7.4 before 7.4.130.0(MD) and 7.5, 7.6, and 8.0 before 8.0.110...
Cisco Wireless LAN Controller Unauthorized Access Vulnerability
The remote Cisco Wireless LAN Controller WLC is affected by an unauthorized access vulnerability due to an unspecified flaw. An unauthenticated, remote attacker who can connect to the device can exploit this to modify the device configuration, resulting in complete compromise of the device. C...
CVE-2015-6314
CVE-2015-6314 affects Cisco Wireless LAN Controller (WLC) software: 7.6.x, 8.0 before 8.0.121.0, and 8.1 before 8.1.131.0. The vulnerability allows a remote, unauthenticated attacker to change device configuration via unspecified vectors, potentially leading to full compromise. Root cause is desc...
CVE-2015-6341
The Web Management GUI on Cisco Wireless LAN Controller WLC devices with software 7.4140.0 and 8.0120.0 allows remote attackers to cause a denial of service client disconnection via unspecified vectors, aka Bug ID CSCuw10610...
CVE-2015-6341
The Web Management GUI on Cisco Wireless LAN Controller WLC devices with software 7.4140.0 and 8.0120.0 allows remote attackers to cause a denial of service client disconnection via unspecified vectors, aka Bug ID CSCuw10610...
CVE-2015-6341
The CVE-2015-6341 issue affects Cisco Wireless LAN Controller (WLC) Web Management GUI. Vulnerable component: Web Management GUI; root cause: lack of access control allowing an unauthenticated, remote attacker to trigger client disconnections. Affected software versions include 7.4(140.0) and 8.0...
Cisco Wireless LAN Controller 802.11i Management Frame DoS
Cisco Wireless LAN Controller contains a vulnerability that could allow an unauthenticated, adjacent attacker to cause a denial of service condition. Copyright C 2015 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...
CVE-2015-6311
CVE-2015-6311 affects Cisco Wireless LAN Controller (WLC) firmware versions 7.0(240.0), 7.3(101.0), and 7.4(1.19). The root cause is not discarding certain malformed 802.11i management frames from clients, allowing an unauthenticated adjacent attacker to cause a denial-of-service (device outage) ...