Access Control Vulnerability in Cisco Wireless Control System
CVE-2007-2033

Currently unrated

Key Information:

Vendor
Cisco
Status
Wireless Control System
Vendor
CVE Published:
16 April 2007

Summary

An unspecified access control vulnerability exists in the Cisco Wireless Control System (WCS) prior to version 4.0.81.0, which could allow remote authenticated users to manipulate user account group memberships. By changing these group memberships, attackers may gain unauthorized access to any configuration page within the system. This flaw raises significant concerns regarding user permissions and system integrity, potentially exposing sensitive configuration data to unauthorized users.

References

http://www.cisco.com/warp/public/707/cisco-sa-20070412-wc...
vendor-advisoryx_refsource_CISCO
http://www.vupen.com/english/advisories/2007/1367
vdb-entryx_refsource_VUPEN
http://securitytracker.com/id?1017907
vdb-entryx_refsource_SECTRACK

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.