13 matches found
CVE-2013-1102
CVE-2013-1102 affects Cisco Wireless LAN Controllers (WLC) via the Wireless Intrusion Prevention System (wIPS). The issue allows a remote, unauthenticated attacker to cause a DoS (device reload) by sending crafted IP packets, tracked as Bug ID CSCtx80743. Affected software versions are 7.0 before...
CVE-2012-0368
CVE-2012-0368 affects Cisco Wireless LAN Controllers (WLC) where an unauthenticated remote attacker can cause a device crash by sending a malformed URL in HTTP requests to the WLC admin interface. The vulnerability is lifecycle-limited to affected software trains: 4.x, 5.x, 6.0, and 7.0 before 7....
CVE-2013-1235
CVE-2013-1235 affects Cisco Wireless LAN Controller (WLC) software. The issue is the improper cleanup of terminated remote Telnet sessions, allowing an unauthenticated, remote attacker to exhaust Telnet resources and cause a denial of service (Telnet outage) by opening many Telnet connections and...
CVE-2012-5992
CVE-2012-5992 affects Cisco Wireless LAN Controller (WLC) devices running software 7.2.110.0. Concrete details from connected documents describe multiple CSRF vulnerabilities that allow an attacker to hijack administrator authentication for requests such as adding administrative accounts (via scr...
CVE-2013-1104
The CVE-2013-1104 issue affects Cisco Wireless LAN Controllers (WLC) with software 7.3.101.0, where HTTP Profiling allows remote authenticated users to execute arbitrary code by sending a crafted HTTP User-Agent header (Remote Code Execution). Multiple public references confirm the HTTP Profiling...
CVE-2012-5991
CVE-2012-5991 affects Cisco Wireless LAN Controller 7.2.110.0. The issue arises from insufficient validation of user-supplied input to the WLC web interface (web_auth_custom.html), enabling remote authenticated users to cause a denial of service (device reload) via a crafted buttonClicked value i...
CVE-2012-0369
CVE-2012-0369 affects Cisco Wireless LAN Controller (WLC) devices running IOS-like software 6.0 and 7.0 before 7.0.220.0, 7.1 before 7.1.91.0, and 7.2 before 7.2.103.0. The vulnerability allows unauthenticated remote attackers to cause a denial of service (device reload) by sending a sequence of ...
CVE-2012-0371
CVE-2012-0371 affects Cisco Wireless LAN Controllers (WLCs) running 4.x, 5.x, 6.0, and 7.0 before 7.0.220.4 where CPU-based ACLs are enabled. An unauthenticated remote attacker could read or modify the device configuration by connecting to TCP port 1023, enabling unauthorized access. Affected dev...
CVE-2007-2038
CVE-2007-2038 affects Cisco Wireless LAN Controller (WLC) NPU, where the NPU can be driven to DoS (loss of packet forwarding) by remote attackers on a local wireless network via crafted SNAP packets, malformed 802.11 traffic, or packets with certain header lengths. The affected platforms are WLCs...
CVE-2012-0370
CVE-2012-0370 affects Cisco Wireless LAN Controllers (WLC) with Cisco WLC software versions 4.x, 5.x, 6.0 and 7.0 before 7.0.220.0, and 7.1 before 7.1.91.0, when WebAuth is enabled. The WebAuth Denial of Service vulnerability allows an unauthenticated remote attacker to cause a device reload by s...
CVE-2012-6007
Cisco Wireless LAN Controller (WLC) devices running software 7.2.110.0 are affected by CVE-2012-6007, a cross-site scripting (XSS) vulnerability in screens/base/web_auth_custom.html. The issue allows remote authenticated users to inject arbitrary web script or HTML via the headline parameter (Bug...
CVE-2013-1103
CVE-2013-1103 affects Cisco Wireless LAN Controllers in the affected software lines (7.0 before 7.0.220.0; 7.1 before 7.1.91.0; 7.2 before 7.2.103.0). The issue is a Denial of Service triggered by crafted SIP packets that can cause an Access Point reload (Bug ID CSCts87659). Public sources includ...
CVE-2013-1105
Cisco Wireless LAN Controllers (WLC) are affected for specific software trains: 7.0 before 7.0.235.3; 7.1; 7.2 before 7.2.111.3; and 7.3 before 7.3.101.0. The issue described as CVE-2013-1105 allows remote authenticated users to bypass wireless-management settings and read or modify the device co...