1. CVE-Search
  2. CVE-2007-4012
ID CVE-2007-4012
Summary Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller (WLC) software 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service (ARP storm) via a broadcast ARP packet that "targets the IP address of a known client context", aka CSCsj50374.
References
Vulnerable Configurations
  • cpe:2.3:h:cisco:4100_wireless_lan_controller:*:*:*:*:*:*:*:*
    cpe:2.3:h:cisco:4100_wireless_lan_controller:*:*:*:*:*:*:*:*
  • cpe:2.3:h:cisco:4400_wireless_lan_controller:*:*:*:*:*:*:*:*
    cpe:2.3:h:cisco:4400_wireless_lan_controller:*:*:*:*:*:*:*:*
  • cpe:2.3:h:cisco:airespace_4000_wireless_lan_controller:*:*:*:*:*:*:*:*
    cpe:2.3:h:cisco:airespace_4000_wireless_lan_controller:*:*:*:*:*:*:*:*
  • cpe:2.3:h:cisco:catalyst_3750:*:*:*:*:*:*:*:*
    cpe:2.3:h:cisco:catalyst_3750:*:*:*:*:*:*:*:*
  • cpe:2.3:h:cisco:catalyst_6500:*:*:*:*:*:*:*:*
    cpe:2.3:h:cisco:catalyst_6500:*:*:*:*:*:*:*:*
  • cpe:2.3:o:cisco:wireless_lan_controller_software:3.2:*:*:*:*:*:*:*
    cpe:2.3:o:cisco:wireless_lan_controller_software:3.2:*:*:*:*:*:*:*
  • cpe:2.3:o:cisco:wireless_lan_controller_software:3.2.116.21:*:*:*:*:*:*:*
    cpe:2.3:o:cisco:wireless_lan_controller_software:3.2.116.21:*:*:*:*:*:*:*
  • cpe:2.3:o:cisco:wireless_lan_controller_software:4.0:*:*:*:*:*:*:*
    cpe:2.3:o:cisco:wireless_lan_controller_software:4.0:*:*:*:*:*:*:*
  • cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.155.0:*:*:*:*:*:*:*
    cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.155.0:*:*:*:*:*:*:*
  • cpe:2.3:o:cisco:wireless_lan_controller_software:4.1:*:*:*:*:*:*:*
    cpe:2.3:o:cisco:wireless_lan_controller_software:4.1:*:*:*:*:*:*:*
CVSS
Base: 7.1 (as of 30-10-2018 - 16:25)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:C
refmap via4
bid 25043
cisco 20070724 Wireless ARP Storm Vulnerability
sectrack 1018444
secunia 26161
vupen ADV-2007-2636
xf
  • cisco-wlc-arp-dos(35576)
  • cisco-wlc-broadcast-arp-dos(44591)
Last major update 30-10-2018 - 16:25
Published 26-07-2007 - 00:30
Last modified 30-10-2018 - 16:25
Back to Top