Remote Configuration Access Vulnerability in Cisco Wireless LAN Controller
CVE-2013-1105

Currently unrated

Key Information:

Vendor: Cisco
Status: Wireless Lan Controller Software; 2000 Wireless Lan Controller; 2100 Wireless Lan Controller; 2500 Wireless Lan Controller
Vendor: CVE Published:; 24 January 2013

Summary

Cisco Wireless LAN Controller devices with specific software versions are susceptible to attacks that allow remote authenticated users to bypass wireless management settings. This vulnerability permits these users to read and modify device configurations using SNMP requests, potentially compromising the integrity and security of the network. Key versions affected include those prior to 7.0.235.3, 7.2.111.3, and 7.3.101.0.

References

http://osvdb.org/89532

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/51965

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/81490

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Jan 24, 2013
Vulnerability Reserved
Jan 11, 2013