漏洞类别:General remote services
漏洞等级: 
漏洞信息
Cisco Wireless LAN Controller helps manage light-weight access points in large quantities by the network administrator or network operations center.
The Cisco Wireless LAN Controller (WLC) product family is affected by the following vulnerabilities:
Cisco Wireless LAN Controller Denial of Service Vulnerability
Cisco Wireless LAN Controller Unauthorized Access to Associated Access Points Vulnerability
Cisco Wireless LAN Controller IGMP Version 3 Denial of Service Vulnerability
Cisco Wireless LAN Controller MLDv2 Denial of Service Vulnerability
Cisco Wireless LAN Controller Crafted Frame Denial of Service Vulnerability
Cisco Wireless LAN Controller Crafted Frame Denial of Service Vulnerability
Affected Versions
Cisco Wireless LAN Controller (WLC) devices 7.x before 7.4.121.0
漏洞危害
On successful exploitation it allows remote attackers to bypass intended access restrictions by connecting to an Aironet access point on which this server had been disabled ineffectively
解决方案
For 7.x versions, migrate to 7.4.121.0 or 7.6.100.0
For 7.0 version, migrate 7.0.250.0 or 7.4.121.0
Customers are advised to refer to Cisco Security Advisory cisco-sa-20140305-wlc for details pertaining to remediating this vulnerability.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论