CVE-2009-0062

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller versions 4.2.173.0 Cisco Catalyst 6500 Wireless Services Module version 4.2.173.0 Cisco Catalyst 3750 Integrated Wireless LAN Controller version 4.2.173.0

Description The issue allows remote authenticated users to gain privileges via unknown vectors, including escalation from the Lobby Admin and Local Management User privilege levels. Multiple vulnerabilities exist, including Denial of Service Vulnerabilities and a Privilege Escalation Vulnerability. These vulnerabilities are independent of each other.

Recommendations For Cisco Wireless LAN Controller version 4.2.173.0, update to a newer version that addresses these vulnerabilities. For Cisco Catalyst 6500 Wireless Services Module version 4.2.173.0, update to a newer version that addresses these vulnerabilities. For Cisco Catalyst 3750 Integrated Wireless LAN Controller version 4.2.173.0, update to a newer version that addresses these vulnerabilities. As a temporary workaround, consider restricting access to the vulnerable systems until a patch is available.