CVE-2009-0059

Currently unrated

Key Information:

Vendor: Cisco
Status: Wireless Lan Controller Software; Catalyst 6500 Series Integrated Wireless Lan Controller; Catalyst 3750 Series Integrated Wireless Lan Controller; Catalyst 7600 Series Wireless Lan Controller
Vendor: CVE Published:; 5 February 2009

Summary

The Cisco Wireless LAN Controller (WLC), Cisco Catalyst 6500 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.x before 4.2.176.0 and 5.2.x before 5.2.157.0 allow remote attackers to cause a denial of service (device reload) via a web authentication (aka WebAuth) session that includes a malformed POST request to login.html.

References

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/33608

vdb-entryx_refsource_BID

http://secunia.com/advisories/33749

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Feb 5, 2009
Vulnerability Reserved
Jan 7, 2009