Vulnerabilities > CVE-2007-2036 - Remote vulnerability in Cisco Wireless LAN Controller Software 4.1

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

cisco

critical

NVD

Published: 2007-04-16

Updated: 2018-10-30

Summary

The SNMP implementation in the Cisco Wireless LAN Controller (WLC) before 20070419 uses the default read-only community public, and the default read-write community private, which allows remote attackers to read and modify SNMP variables, aka Bug ID CSCse02384.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco Wireless LAN Controller Software 4.1	1

References

http://securitytracker.com/id?1017908
http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml
http://www.osvdb.org/34134
http://www.securityfocus.com/bid/23461
http://www.vupen.com/english/advisories/2007/1368
https://exchange.xforce.ibmcloud.com/vulnerabilities/33604