Vulnerability in Cisco Access Points and Airespace WLAN Controllers
CVE-2005-3482

Currently unrated

Key Information:

Vendor: Cisco
Status: Aironet Ap1240; Aironet Ap1200; Aironet Ap1131
Vendor: CVE Published:; 3 November 2005

Summary

The vulnerability exists in Cisco 1200, 1131, and 1240 series Access Points when operating in Lightweight Access Point Protocol (LWAPP) mode, controlled by Airespace WLAN controllers from the 2000 and 4400 series. This flaw allows remote attackers to send unencrypted traffic to a secure network by using frames that masquerade as having the MAC address of an authenticated endpoint. This situation could lead to unauthorized access to sensitive communications and data within the affected network environment.

References

http://securityreason.com/securityalert/139

third-party-advisoryx_refsource_SREASON

http://www.osvdb.org/20454

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/15272

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Nov 3, 2005
Vulnerability Reserved
Nov 3, 2005