cisco_1500_wireless_lan_controller,cisco_4400_wireless_lan_controller,cisco_4200_wireless_lan_controller,cisco_2100_wireless_lan_controller,cisco_2000_wireless_lan_controller,catalyst_3750g,cisco_4100_wireless_lan_controller 拒绝服务漏洞

CVE编号

CVE-2009-1164

利用情况

暂无

补丁情况

N/A

披露时间

2009-07-30
漏洞描述
The administrative web interface on the Cisco Wireless LAN Controller (WLC) platform 4.2 before 4.2.205.0 and 5.x before 5.2.178.0, as used in Cisco 1500 Series, 2000 Series, 2100 Series, 4100 Series, 4200 Series, and 4400 Series Wireless Services Modules (WiSM), WLC Modules for Integrated Services Routers, and Catalyst 3750G Integrated Wireless LAN Controllers, allows remote attackers to cause a denial of service (device reload) via a malformed response to a (1) HTTP or (2) HTTPS authentication request, aka Bug ID CSCsx03715.
解决建议
建议您更新当前系统或软件至最新版,完成漏洞的修复。
参考链接
http://www.cisco.com/en/US/products/products_security_advisory09186a0080adb3d7.shtml
http://www.vupen.com/english/advisories/2009/2021
受影响软件情况
# 类型 厂商 产品 版本 影响面
1
运行在以下环境
硬件 cisco catalyst_3750g * -
运行在以下环境
硬件 cisco cisco_1500_wireless_lan_controller 4.2 -
运行在以下环境
硬件 cisco cisco_1500_wireless_lan_controller 5.0 -
运行在以下环境
硬件 cisco cisco_1500_wireless_lan_controller 5.1 -
运行在以下环境
硬件 cisco cisco_1500_wireless_lan_controller 5.2 -
运行在以下环境
硬件 cisco cisco_2000_wireless_lan_controller 4.2 -
运行在以下环境
硬件 cisco cisco_2000_wireless_lan_controller 5.0 -
运行在以下环境
硬件 cisco cisco_2000_wireless_lan_controller 5.1 -
运行在以下环境
硬件 cisco cisco_2000_wireless_lan_controller 5.2 -
运行在以下环境
硬件 cisco cisco_2100_wireless_lan_controller 4.2 -
运行在以下环境
硬件 cisco cisco_2100_wireless_lan_controller 5.0 -
运行在以下环境
硬件 cisco cisco_2100_wireless_lan_controller 5.1 -
运行在以下环境
硬件 cisco cisco_2100_wireless_lan_controller 5.2 -
运行在以下环境
硬件 cisco cisco_4100_wireless_lan_controller 4.2 -
运行在以下环境
硬件 cisco cisco_4100_wireless_lan_controller 5.0 -
运行在以下环境
硬件 cisco cisco_4100_wireless_lan_controller 5.1 -
运行在以下环境
硬件 cisco cisco_4100_wireless_lan_controller 5.2 -
运行在以下环境
硬件 cisco cisco_4200_wireless_lan_controller 4.2 -
运行在以下环境
硬件 cisco cisco_4200_wireless_lan_controller 5.0 -
运行在以下环境
硬件 cisco cisco_4200_wireless_lan_controller 5.1 -
运行在以下环境
硬件 cisco cisco_4200_wireless_lan_controller 5.2 -
运行在以下环境
硬件 cisco cisco_4400_wireless_lan_controller 4.2 -
运行在以下环境
硬件 cisco cisco_4400_wireless_lan_controller 5.0 -
运行在以下环境
硬件 cisco cisco_4400_wireless_lan_controller 5.1 -
运行在以下环境
硬件 cisco cisco_4400_wireless_lan_controller 5.2 -
CVSS3评分
7.8
  • 攻击路径
    网络
  • 攻击复杂度
  • 权限要求
  • 影响范围
    N/A
  • 用户交互
  • 可用性
    完全地
  • 保密性
  • 完整性
AV:N/AC:L/Au:N/C:N/I:N/A:C
CWE-ID 漏洞类型
CWE-399 资源管理错误
阿里云安全产品覆盖情况