CVE-2015-0622

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller (WLC) (affected versions not specified)

Description The issue allows remote attackers to cause a denial of service, resulting in a device outage, by sending crafted packets that are improperly handled during rendering of the Signature Events Summary page. An unauthenticated, remote attacker could force the WLC to become unresponsive by sending a large number of crafted packets to an affected WLC, requiring an administrator to click the IDS events under Security > Wireless Protection Policies > Signature Events Summary in the WLC admin web interface. The attack requires the attacker to be on the same broadcast or collision domain as the targeted device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.