Privilege Escalation in Cisco Wireless Control System
CVE-2007-2034

Currently unrated

Key Information:

Vendor: Cisco
Status: Wireless Control System
Vendor: CVE Published:; 16 April 2007

Summary

A vulnerability has been identified in Cisco Wireless Control System (WCS) prior to version 4.0.87.0, which allows remote authenticated users to escalate their privileges to that of the SuperUsers group. This permission elevation can result in unauthorized management capabilities over the application and its networks due to the improper handling of user account group memberships.

References

http://www.cisco.com/warp/public/707/cisco-sa-20070412-wc...

vendor-advisoryx_refsource_CISCO

http://www.vupen.com/english/advisories/2007/1367

vdb-entryx_refsource_VUPEN

http://securitytracker.com/id?1017907

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Apr 16, 2007
Vulnerability Reserved
Apr 16, 2007