PT-2017-16129 · Cisco · Cisco Wireless Lan Controller+1

Publicado

2017-04-05

Atualizado

2021-11-08

CVE-2017-3832

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller version 8.3.102.0

Description A vulnerability in the web management interface could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The issue is due to a missing internal handler for a specific request. An attacker could exploit this by accessing a specific hidden URL on the GUI web management interface, potentially causing a reload of the device and resulting in a DoS condition.

Recommendations For Cisco Wireless LAN Controller version 8.3.102.0, update to a newer version that addresses this issue, as software updates have been released by Cisco to fix the vulnerability.

Correção

DoS

Improper Handling of Exceptional Conditions

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-755CWE-264

Identificadores relacionados

CVE-2017-3832

Produtos afetados

Cisco Wireless Lan Controller

Cisco Wls

PT-2017-16129 · Cisco · Cisco Wireless Lan Controller+1

CVE-2017-3832

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5