Remote Code Execution Risk in Cisco Wireless LAN Controllers
CVE-2012-0371

Currently unrated

Key Information:

Vendor: Cisco
Status: Wireless Lan Controller Software; 2000 Wireless Lan Controller; 2100 Wireless Lan Controller; 2106 Wireless Lan Controller
Vendor: CVE Published:; 1 March 2012

Summary

Cisco Wireless LAN Controllers running software versions 4.x, 5.x, 6.0, and 7.0 prior to 7.0.220.4 possess a vulnerability that permits remote attackers to read or alter configurations when CPU-based ACLs are enabled. This flaw can be exploited through unspecified vectors, allowing unauthorized access to critical device settings, potentially compromising network security.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://archives.neohapsis.com/archives/bugtraq/2012-02/01...

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Mar 1, 2012
Vulnerability Reserved
Jan 4, 2012