Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveCiscoCVE-2009-2861
HistoryAug 27, 2009 - 5:00 p.m.

CVE-2009-2861

2009-08-2717:00:01
cisco
web.nvd.nist.gov
25
cve-2009-2861
over-the-air provisioning
cisco aironet
lightweight access point
denial of service
rrm packets
skyjack
bug id csctb56664
nvd
security advisory

CVSS2

7.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:M/Au:N/C:N/I:C/A:C

AI Score

7

Confidence

High

EPSS

0.012

Percentile

85.7%

JSON

The Over-the-Air Provisioning (OTAP) functionality on Cisco Aironet Lightweight Access Point 1100 and 1200 devices does not properly implement access-point association, which allows remote attackers to spoof a controller and cause a denial of service (service outage) via crafted remote radio management (RRM) packets, aka “SkyJack” or Bug ID CSCtb56664.

Affected configurations

Nvd
Node
ciscoaironet_ap1100
OR
ciscoaironet_ap1200
VendorProductVersionCPE
ciscoaironet_ap1100*cpe:2.3:h:cisco:aironet_ap1100:*:*:*:*:*:*:*:*
ciscoaironet_ap1200*cpe:2.3:h:cisco:aironet_ap1200:*:*:*:*:*:*:*:*

Related

prion 1
nvd 1
cvelist 1
prion
prion
Design/Logic Flaw
2009-08-27 17:00:00
nvd
nvd
CVE-2009-2861
2009-08-27 17:00:01
cvelist
cvelist
CVE-2009-2861
2009-08-27 16:31:00

CVSS2

7.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:M/Au:N/C:N/I:C/A:C

AI Score

7

Confidence

High

EPSS

0.012

Percentile

85.7%

JSON
Related for CVE-2009-2861
prion1nvd1cvelist1