CVE-2007-2036

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller (WLC) versions prior to 20070419

Description The issue concerns the SNMP implementation in the Cisco Wireless LAN Controller, which uses default community strings, allowing remote attackers to access and modify SNMP variables. Additionally, the WLC contains multiple vulnerabilities that could lead to a denial of service condition, information disclosure, access control list changes, or allow an attacker to gain full administrative access.

Recommendations For versions prior to 20070419, update to a version released after 20070419 to address the vulnerabilities. As a temporary workaround, consider changing the default read-only and read-write community strings to custom values to prevent unauthorized access. Restrict access to the SNMP service to minimize the risk of exploitation.