Denial of Service Vulnerability in Cisco Wireless LAN Controller
CVE-2015-0679

Currently unrated

Key Information:

Vendor: Cisco
Status: Wireless Lan Controller Software
Vendor: CVE Published:; 28 March 2015

What is CVE-2015-0679?

The web-authentication functionality on Cisco Wireless LAN Controller devices, specifically versions 7.3(103.8) and 7.4(110.0), presents a vulnerability that allows remote attackers to disrupt service by employing a malformed password. This leads to the device experiencing a denial of service condition, causing it to reload unexpectedly. This behavior is associated with Bug ID CSCui57980 and could impact network reliability for organizations using the affected versions.

References

http://www.securitytracker.com/id/1031990

vdb-entryx_refsource_SECTRACK

http://tools.cisco.com/security/center/viewAlert.x?alertI...

vendor-advisoryx_refsource_CISCO

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 28, 2015
Vulnerability Reserved
Jan 7, 2015