ID
VAR-E-201202-0375
CVE
| cve_id: | CVE-2012-0370 | Trust: 0.3 |
TITLE
Cisco Wireless LAN Controller CVE-2012-0370 'WebAuth' Denial of Service Vulnerability
Trust: 0.3
DESCRIPTION
Cisco Wireless LAN Controller is prone to a remote denial-of-service vulnerability.
An unauthenticated attacker can exploit this issue to cause an device configured for 'WebAuth' to reload, denying service to legitimate users.
This issue is tracked by Cisco Bug ID CSCtt47435.
http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsq24002
Trust: 0.3
AFFECTED PRODUCTS
| vendor: | cisco | model: | wireless services modules | scope: | eq | version: | 2 | Trust: 0.3 |
| vendor: | cisco | model: | wireless services modules | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan control | scope: | eq | version: | 7.1 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan control | scope: | eq | version: | 7.0 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan control | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan control | scope: | eq | version: | 5.2 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan control | scope: | eq | version: | 5.1 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan control | scope: | eq | version: | 5.0 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan control m | scope: | eq | version: | 4.2 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan control | scope: | eq | version: | 4.2 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan control m | scope: | eq | version: | 4.1 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan control | scope: | eq | version: | 4.1 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan control | scope: | eq | version: | 4.0 | Trust: 0.3 |
| vendor: | cisco | model: | nme-air-wlc for isr | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | cisco | model: | nm-air-wlc for isr | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | cisco | model: | flex cloud controllers | scope: | eq | version: | 75000 | Trust: 0.3 |
| vendor: | cisco | model: | catalyst 3750g | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan controller | scope: | eq | version: | 55000 | Trust: 0.3 |
| vendor: | cisco | model: | wireless express mobility controllers | scope: | eq | version: | 5000 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan controller | scope: | eq | version: | 44000 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan controller | scope: | eq | version: | 41000 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan controller | scope: | eq | version: | 25000 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan controller | scope: | eq | version: | 21000 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan controller | scope: | eq | version: | 20000 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan control | scope: | ne | version: | 7.1.91.0 | Trust: 0.3 |
| vendor: | cisco | model: | wireless lan control | scope: | ne | version: | 7.0.220.0 | Trust: 0.3 |
EXPLOIT
To exploit this issue, attackers can use a browser or readily available network utilities.
Trust: 0.3
PRICE
Free
Trust: 0.3
TYPE
Failure to Handle Exceptional Conditions
Trust: 0.3
CREDITS
Cisco
Trust: 0.3
EXTERNAL IDS
| db: | NVD | id: | CVE-2012-0370 | Trust: 0.3 |
| db: | BID | id: | 52220 | Trust: 0.3 |
REFERENCES
| url: | http://www.cisco.com/ | Trust: 0.3 |
| url: | http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20120229-wlc | Trust: 0.3 |
SOURCES
| db: | BID | id: | 52220 |
LAST UPDATE DATE
2022-07-27T09:22:12.210000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 52220 | date: | 2012-02-29T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 52220 | date: | 2012-02-29T00:00:00 |