CVE-2013-1105

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller (WLC) devices versions 7.0 through 7.0.235.3 Cisco Wireless LAN Controller (WLC) devices versions 7.1 through 7.2.111.3 Cisco Wireless LAN Controller (WLC) devices versions 7.3 through 7.3.101.0

Description The issue allows remote authenticated users to bypass wireless-management settings and read or modify the device configuration via an SNMP request. The Cisco Wireless LAN Controller product family is affected by multiple vulnerabilities, including a SNMP Unauthorized Access Vulnerability.

Recommendations For versions 7.0 through 7.0.235.3, update to version 7.0.235.3 or later. For versions 7.1 through 7.2.111.3, update to version 7.2.111.3 or later. For versions 7.3 through 7.3.101.0, update to version 7.3.101.0 or later. As a temporary workaround, consider restricting access to SNMP requests until a patch is available.