CVE-2013-1104

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller versions 7.3.101.0

Description The issue allows remote authenticated users to execute arbitrary code via a crafted HTTP User-Agent header. The Cisco Wireless LAN Controller product family is affected by multiple vulnerabilities, including a remote code execution vulnerability in the HTTP Profiling functionality.

Recommendations For version 7.3.101.0, update to a newer version that addresses the vulnerabilities, as software updates have been released by Cisco. As a temporary workaround, consider restricting access to the HTTP Profiling functionality to minimize the risk of exploitation.