CVE-2007-2037

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller (WLC) versions 3.2.116.21 and earlier, and 4.0.x versions prior to 4.0.155.0

Description The issue allows remote attackers on a local network to cause a denial of service (device crash) via malformed Ethernet traffic. It could also result in information disclosure, access control list changes, or allow an attacker to gain full administrative access.

Recommendations For versions 3.2.116.21 and earlier, update to version 3.2.116.21 or later to resolve the issue. For 4.0.x versions prior to 4.0.155.0, update to version 4.0.155.0 or later to resolve the issue. As a temporary workaround, consider implementing available workarounds to mitigate the effects of these vulnerabilities until a patch is applied.