Access Control Bypass in Cisco Unified Wireless Network Solution
CVE-2010-2984

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Wireless Network Solution Software
Vendor: CVE Published:; 10 August 2010

Summary

The Cisco Unified Wireless Network Solution prior to version 7.0.98.0 on 4404 series controllers contains a vulnerability that stems from improper implementation of the WEBAUTH_REQD state. This flaw permits remote attackers to bypass established access restrictions via WLAN traffic, potentially leading to unauthorized access to network resources. Users of affected versions should promptly apply available updates to safeguard their wireless environments.

References

http://www.cisco.com/en/US/docs/wireless/controller/relea...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 10, 2010