CVE-2009-1164

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller (WLC) platform versions 4.2 before 4.2.205.0 Cisco Wireless LAN Controller (WLC) platform versions 5.x before 5.2.178.0

Description The administrative web interface on the Cisco Wireless LAN Controller (WLC) platform allows remote attackers to cause a denial of service (device reload) via a malformed response to an HTTP or HTTPS authentication request. Multiple vulnerabilities exist in the Cisco Wireless LAN Controller platforms, including denial of service vulnerabilities and unauthorized configuration modification vulnerabilities.

Recommendations For versions 4.2 before 4.2.205.0, update to version 4.2.205.0 or later to address the vulnerabilities. For versions 5.x before 5.2.178.0, update to version 5.2.178.0 or later to address the vulnerabilities. As a temporary workaround, consider restricting access to the administrative web interface to minimize the risk of exploitation.