CVE-2013-1102

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller versions 7.0 through 7.0.234.0 Cisco Wireless LAN Controller versions 7.1 through 7.2.109.0 Cisco Wireless LAN Controller versions 7.3 through 7.3.100.0

Description The issue is related to the improper handling of crafted IP packets by the Wireless Intrusion Prevention System (wIPS) component, which can cause a denial of service (device reload) when exploited by an unauthenticated, remote attacker. The attacker must send crafted IP packets to the targeted device to exploit the vulnerability, likely requiring access to trusted, internal networks.

Recommendations For Cisco Wireless LAN Controller version 7.0, update to version 7.0.235.0 or later. For Cisco Wireless LAN Controller versions 7.1 and 7.2, update to version 7.2.110.0 or later. For Cisco Wireless LAN Controller version 7.3, update to version 7.3.101.0 or later.