Denial of Service in Cisco Wireless LAN Controller Products
CVE-2009-1164

Currently unrated

Key Information:

Vendor: Cisco
Status: Cisco 4200 Wireless Lan Controller; Cisco 4400 Wireless Lan Controller; Cisco 2000 Wireless Lan Controller; Cisco 2100 Wireless Lan Controller
Vendor: CVE Published:; 29 July 2009

Summary

The Cisco Wireless LAN Controller administrative web interface is prone to a denial of service vulnerability that allows an attacker to trigger a device reload. By sending a malformed response to an HTTP or HTTPS authentication request, an unauthorized user can exploit this weakness, affecting several Cisco Wireless LAN Controller models and resulting in interrupted service.

References

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

http://www.vupen.com/english/advisories/2009/2021

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Jul 29, 2009
Vulnerability Reserved
Mar 26, 2009