CVE-2014-0705

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller versions 7.2, 7.3, 7.4 through 7.4.120.0, and 7.5

Description The issue allows remote attackers to cause a denial of service, resulting in a device restart, by sending a malformed IPv6 MLDv2 packet when MLDv2 Snooping is enabled.

Recommendations For versions 7.2, 7.3, and 7.4 through 7.4.120.0, update to version 7.4.121.0 or later. For version 7.5, update to a version that includes the fix for this issue. As a temporary workaround, consider disabling the MLDv2 Snooping feature until a patch is available.