Must Read: Galaxy Note 8.0 tablet: Beating the iPad mini (review)

Topic: Security

Security flaws haunt Cisco Wireless LAN Controller

Summary: Cisco is warning that its Wireless LAN Controller (WLC) product family is affected by seven separate security  vulnerabilities that could allow  a remote attacker to launch denial-of-service attacks, modify device configurations, or bypass access control lists.In an alert issued today, Cisco warned that there are no workarounds to mitigate these issues and urged affected users to apply the available patches.

Ryan Naraine

By for Zero Day |

Cisco is warning that its Wireless LAN Controller (WLC) product family is affected by seven separate security  vulnerabilities that could allow  a remote attacker to launch denial-of-service attacks, modify device configurations, or bypass access control lists.

In an alert issued today, Cisco warned that there are no workarounds to mitigate these issues and urged affected users to apply the available patches.

The skinny:

  • Two denial of service (DoS) vulnerabilities
    • follow Ryan Naraine on twitter
  • Three privilege escalation vulnerabilities
  • Two access control list (ACL) bypass vulnerabilities

In the case of the DoS vulnerabilities, an  attacker with the ability to send a malicious IKE or HTTP packets to an affected Cisco WLC could cause the device to crash and reload. Cisco said these vulnerabilities can be exploited from both wired and wireless segments.

The company also called attention to three privilege escalation vulnerabilities that could allow an authenticated attacker with read-only privileges to modify the device configuration.

Two separate ACL bypass flaws could allow an unauthenticated attacker to bypass policies that should be enforced by CPU-based ACLs.

Topics: Security, Cisco

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

9 comments
Log in or register to join the discussion

  • Fixed!

    All these vulnerabilities have all been fixed in currently available releases.
    The article references the alert stating all the releases and fixes:

    http://www.cisco.com/warp/public/707/cisco-sa-20100908-wlc.shtml
    justinbiscuit
    Reply Vote

    • RE: Security flaws haunt Cisco Wireless LAN Controller

      authenticated attacker with read-only privileges to modify the device<a href="http://www.leedphilly.com/"><font color="light&amp;height"> vehicle</font></a> of the any <a href="http://www.crescenciohernandez.com/"><font color="light&amp;height">this</font></a> is the music <a href="http://www.anangrymob.com/"><font color="light&amp;height">of angry</font></a> that can make <a href="http://www.performingalileo.net/"><font color="light&amp;height">perform</font></a> you to fly <a href="http://www.spindletopsteakhouse.com/"><font color="light&amp;height">steak</font></a> and also configuration.
      gogon gondrong
      Reply Vote

    • RE: Security flaws haunt Cisco Wireless LAN Controller

      @justinbiscuit Thanks for sharing. i really appreciate it that you shared with us such a informative post..
      <a href="http://www.theessay.co.uk/">Essay Writing</a>
      <a href="http://www.thecoursework.co.uk/">Coursework Writing</a>
      <a href="http://www.theassignments.co.uk/">Assignment writing</a>
      bynes69
      Reply Vote

    • RE: Security flaws haunt Cisco Wireless LAN Controller

      @justinbiscuit Thanks for the information. This is a wonderful post!!
      <a href="http://www.thedissertation.co.uk/">Dissertation Writing</a>
      <a href="http://www.theonlinethesis.co.uk/">Thesis Writing</a>
      bynes69
      Reply Vote

  • RE: Security flaws haunt Cisco Wireless LAN Controller

    ewet dedim ama neyse
    http://www.bbgporn.com/
    http://www.hmmtube.com/
    dogru deme
    http://www.erotiktube.org/
    http://www.52tube.com/
    http://www.wctube.com/
    http://www.cameporn.com/
    http://www.escortbayan9.com/
    tamam dedim
    myclub
    Reply Vote

    • RE: Security flaws haunt Cisco Wireless LAN Controller

      @myclub

      these are the kinds of great posts this site needs more of.

      <a href="http://diablo-3-blog.org/">diablo 3 news</a>
      zipzip39
      Reply Vote

  • RE: Security flaws haunt Cisco Wireless LAN Controller

    These flaws are important, glad you pointed them out.

    <a href="http://www.bedbathbeyondprintablecoupons.com/">bed bath and beyond printable coupons</a>
    grahamrix
    Reply Vote

  • RE: Security flaws haunt Cisco Wireless LAN Controller

    Nice post my friend

    <a href="http://www.mad4sport.co.uk/saucony-jazz/">saucony jazz</a>
    grahamrix
    Reply Vote

  • RE: Security flaws haunt Cisco Wireless LAN Controller

    Took a lot of time to get on it, but I really found this very interesting and informative, thank you buddy for sharing.

    [url=http://www.bestresearchpaper.co.uk]research papers[/url]
    mathewstuart
    Reply Vote
CNET Join | Log In | Privacy | Cookies Close