Remote Configuration Manipulation in Cisco Wireless LAN Controllers
CVE-2009-1167

Currently unrated

Key Information:

Vendor: Cisco
Status: Cisco 4200 Wireless Lan Controller; Cisco 4400 Wireless Lan Controller; Cisco 2000 Wireless Lan Controller; Cisco 2100 Wireless Lan Controller
Vendor: CVE Published:; 29 July 2009

Summary

A vulnerability exists in the Cisco Wireless LAN Controller platform versions prior to 4.2.205.0 and 5.2.191.0, affecting several models including the 1500, 2000, 2100, 4100, 4200, and 4400 Series. This issue allows remote attackers to modify configurations through specially crafted HTTP or HTTPS requests. It has been identified under Bug ID CSCsy44672, posing significant risks to network integrity if exploited.

References

http://www.securitytracker.com/id?1022606

vdb-entryx_refsource_SECTRACK

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

http://www.vupen.com/english/advisories/2009/2021

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Jul 29, 2009
Vulnerability Reserved
Mar 26, 2009