Description
Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller (WLC) software 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service (ARP storm) via a broadcast ARP packet that "targets the IP address of a known client context", aka CSCsj50374.
Affected products
- Cisco / wireless_lan_controller_software3.2 – 3.2
- Cisco / wireless_lan_controller_software3.2.116.21 – 3.2.116.21
- Cisco / wireless_lan_controller_software4.0 – 4.0
- Cisco / wireless_lan_controller_software4.0.155.0 – 4.0.155.0
- Cisco / wireless_lan_controller_software4.1 – 4.1
References
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2007/2636
- VENDOR_ADVISORYhttp://secunia.com/advisories/26161
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/35576
- MISChttp://www.securityfocus.com/bid/25043
- MISChttp://www.securitytracker.com/id?1018444
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/44591
- VENDOR_ADVISORYhttp://www.cisco.com/en/US/products/products_security_advisory09186a008088ab28.shtml