CVE-2007-4012

Name of the Vulnerable Software and Affected Versions: Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller (WLC) software versions prior to 4.1.180.0 Cisco Wireless LAN Controllers (WLC) (affected versions not specified)

Description: The issue allows remote attackers to cause a denial of service (ARP storm) via a broadcast ARP packet that targets the IP address of a known client context. It is related to the handling of Address Resolution Protocol (ARP) packets, which could result in a denial of service (DoS) in certain environments.

Recommendations: For Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller (WLC) software versions prior to 4.1.180.0, update to version 4.1.180.0 or later to resolve the issue. For Cisco Wireless LAN Controllers (WLC) with unspecified affected versions, contact Cisco support for guidance on obtaining and applying the necessary software update to address the vulnerabilities. As a temporary workaround, consider implementing workarounds available to mitigate the effects of these vulnerabilities, such as restricting ARP packet handling or limiting broadcast traffic.