Remote Denial of Service Vulnerability in Cisco Wireless Controllers and Modules
CVE-2009-0059

Currently unrated

Key Information:

Vendor: Cisco
Status: Wireless Lan Controller Software; Catalyst 6500 Series Integrated Wireless Lan Controller; Catalyst 3750 Series Integrated Wireless Lan Controller; Catalyst 7600 Series Wireless Lan Controller
Vendor: CVE Published:; 5 February 2009

Summary

A flaw in Cisco Wireless LAN Controllers and associated modules allows remote attackers to trigger a denial of service by sending a malformed POST request during the web authentication (WebAuth) process. This action can cause the affected devices to reload unexpectedly, disrupting network services.

References

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/33608

vdb-entryx_refsource_BID

http://secunia.com/advisories/33749

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Feb 5, 2009
Vulnerability Reserved
Jan 7, 2009