Lucene search

[email protected]NVD:CVE-2012-0370

HistoryMar 01, 2012 - 1:55 a.m.

CVE-2012-0370

2012-03-0101:55:01

CWE-399

[email protected]

web.nvd.nist.gov

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.7

Confidence

High

EPSS

0.002

Percentile

55.5%

JSON

Cisco Wireless LAN Controller (WLC) devices with software 4.x, 5.x, 6.0, and 7.0 before 7.0.220.0 and 7.1 before 7.1.91.0, when WebAuth is enabled, allow remote attackers to cause a denial of service (device reload) via a sequence of (1) HTTP or (2) HTTPS packets, aka Bug ID CSCtt47435.

Affected configurations

Nvd

Node

ciscowireless_lan_controller_softwareMatch4.0

ciscowireless_lan_controller_softwareMatch4.0.108

ciscowireless_lan_controller_softwareMatch4.0.155.0

ciscowireless_lan_controller_softwareMatch4.0.155.5

ciscowireless_lan_controller_softwareMatch4.0.179.8

ciscowireless_lan_controller_softwareMatch4.0.179.11

ciscowireless_lan_controller_softwareMatch4.0.196

ciscowireless_lan_controller_softwareMatch4.0.206.0

ciscowireless_lan_controller_softwareMatch4.0.217.0

ciscowireless_lan_controller_softwareMatch4.0.219.0

ciscowireless_lan_controller_softwareMatch4.1

ciscowireless_lan_controller_softwareMatch4.1.171.0

ciscowireless_lan_controller_softwareMatch4.1.181.0

ciscowireless_lan_controller_softwareMatch4.1.185.0

ciscowireless_lan_controller_softwareMatch4.1m

ciscowireless_lan_controller_softwareMatch4.2

ciscowireless_lan_controller_softwareMatch4.2.61.0

ciscowireless_lan_controller_softwareMatch4.2.99.0

ciscowireless_lan_controller_softwareMatch4.2.112.0

ciscowireless_lan_controller_softwareMatch4.2.117.0

ciscowireless_lan_controller_softwareMatch4.2.130.0

ciscowireless_lan_controller_softwareMatch4.2.173.0

ciscowireless_lan_controller_softwareMatch4.2.174.0

ciscowireless_lan_controller_softwareMatch4.2.176.0

ciscowireless_lan_controller_softwareMatch4.2.182.0

ciscowireless_lan_controller_softwareMatch4.2m

ciscowireless_lan_controller_softwareMatch5.0

ciscowireless_lan_controller_softwareMatch5.0.148.0

ciscowireless_lan_controller_softwareMatch5.0.148.2

ciscowireless_lan_controller_softwareMatch5.1

ciscowireless_lan_controller_softwareMatch5.1.151.0

ciscowireless_lan_controller_softwareMatch5.1.152.0

ciscowireless_lan_controller_softwareMatch5.1.160.0

ciscowireless_lan_controller_softwareMatch5.2

ciscowireless_lan_controller_softwareMatch5.2.157.0

ciscowireless_lan_controller_softwareMatch5.2.169.0

ciscowireless_lan_controller_softwareMatch6.0

ciscowireless_lan_controller_softwareMatch6.0.182.0

ciscowireless_lan_controller_softwareMatch6.0.188.0

ciscowireless_lan_controller_softwareMatch6.0.196.0

ciscowireless_lan_controller_softwareMatch6.0.199.0

ciscowireless_lan_controller_softwareMatch6.0.199.4

ciscowireless_lan_controller_softwareMatch7.0

ciscowireless_lan_controller_softwareMatch7.0.98.0

ciscowireless_lan_controller_softwareMatch7.1

ciscowireless_lan_controller_softwareMatch7.2

AND

cisco2000_wireless_lan_controller

cisco2100_wireless_lan_controller

cisco2106_wireless_lan_controller

cisco2112_wireless_lan_controller

cisco2125_wireless_lan_controller

cisco2500_wireless_lan_controller

cisco2504_wireless_lan_controller

cisco4100_wireless_lan_controller

cisco4400_wireless_lan_controller

cisco4402_wireless_lan_controller

cisco4404_wireless_lan_controller

cisco5508_wireless_controller

References

archives.neohapsis.com/archives/bugtraq/2012-02/0188.html

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120229-wlc

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.7

Confidence

High

EPSS

0.002

Percentile

55.5%

JSON

Related for NVD:CVE-2012-0370

prion1 cve1 cvelist1 cisco1 securityvulns2