CVE-2015-6302

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller (WLC) versions 7.0(250.0) through 7.0(252.0)

Description A vulnerability in the RADIUS implementation allows an unauthenticated, remote attacker to cause a partial denial of service (DoS) condition by disconnecting user sessions. This is due to a lack of proper input validation of the RADIUS Disconnect-Request packet. An attacker could exploit this by sending crafted RADIUS UDP Disconnect-Request packets to the affected device, allowing them to disconnect arbitrary sessions.

Recommendations For versions 7.0(250.0) and 7.0(252.0), restrict access to the RADIUS Disconnect-Request packets to minimize the risk of exploitation. As a temporary workaround, consider restricting network access from untrusted sources to the affected device until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.