PT-2009-2765 · Cisco · Cisco 4400 Wlc+3
Published
2009-02-04
·
Updated
2018-10-30
·
CVE-2009-0061
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco 4400 WLC versions 4.x through 4.2.175.0
Cisco 4400 WLC versions 5.x through 5.0.999.9
Cisco Catalyst 6500 and 7600 Wireless Services Module (WiSM) versions 4.x through 4.2.175.0
Cisco Catalyst 6500 and 7600 Wireless Services Module (WiSM) versions 5.x through 5.0.999.9
Cisco Catalyst 3750 Integrated Wireless LAN Controller versions 4.x through 4.2.175.0
Cisco Catalyst 3750 Integrated Wireless LAN Controller versions 5.x through 5.0.999.9
Description
The issue allows remote attackers to cause a denial of service via unknown IP packets, potentially leading to a device crash or hang. Multiple vulnerabilities exist, including denial of service and privilege escalation vulnerabilities. These vulnerabilities are independent of each other.
Recommendations
For Cisco 4400 WLC versions 4.x through 4.2.175.0, update to software version 4.2.176.0 or later.
For Cisco 4400 WLC versions 5.x through 5.0.999.9, update to software version 5.1 or later.
For Cisco Catalyst 6500 and 7600 Wireless Services Module (WiSM) versions 4.x through 4.2.175.0, update to software version 4.2.176.0 or later.
For Cisco Catalyst 6500 and 7600 Wireless Services Module (WiSM) versions 5.x through 5.0.999.9, update to software version 5.1 or later.
For Cisco Catalyst 3750 Integrated Wireless LAN Controller versions 4.x through 4.2.175.0, update to software version 4.2.176.0 or later.
For Cisco Catalyst 3750 Integrated Wireless LAN Controller versions 5.x through 5.0.999.9, update to software version 5.1 or later.
Fix
DoS
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cisco 4400 Wlc
Cisco Catalyst 3750 Integrated Wireless Lan Controller
Cisco Catalyst 6500/7600 Wireless Services Module
Cisco Wls