CVE-2007-2037 - Cisco Wireless LAN Controller (WLC) before 3.2.116.21, and 4.0.x before 4.0.155.0, allows remote att

CVE-2007-2037

Summary

Cisco Wireless LAN Controller (WLC) before 3.2.116.21, and 4.0.x before 4.0.155.0, allows remote attackers on a local network to cause a denial of service (device crash) via malformed Ethernet traffic.

References

Vulnerable Configurations

cpe:2.3:o:cisco:wireless_lan_controller_software:3.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:wireless_lan_controller_software:3.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:wireless_lan_controller_software:4.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:wireless_lan_controller_software:4.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.108:*:*:*:*:*:*:*
cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.108:*:*:*:*:*:*:*

CVSS

Base:	2.9 (as of 01-11-2018 - 16:55)
Impact:
Exploitability:

CWE

CWE-399

CAPEC

Access

Vector	Complexity	Authentication
ADJACENT_NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:A/AC:M/Au:N/C:N/I:N/A:P

refmap via4

bid	23461
cisco	20070412 Multiple Vulnerabilities in the Cisco Wireless LAN Controller and Cisco Lightweight Access Points
osvdb	34135
sectrack	1017908
vupen	ADV-2007-1368
xf	cisco-wlc-ethernet-traffic-dos(33607)

Last major update

01-11-2018 - 16:55

Published

16-04-2007 - 21:19

Last modified

01-11-2018 - 16:55