Vulnerabilities > CVE-2007-2038 - Remote vulnerability in Cisco Wireless Lan Controller

CVSS 6.1 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

low complexity

cisco

NVD

Published: 2007-04-16

Updated: 2017-07-29

Summary

The Network Processing Unit (NPU) in the Cisco Wireless LAN Controller (WLC) before 3.2.193.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service (loss of packet forwarding) via (1) crafted SNAP packets, (2) malformed 802.11 traffic, or (3) packets with certain header length values, aka Bug ID CSCsg36361.

Vulnerable Configurations

Part	Description	Count
Hardware	Cisco Cisco 2000 Wireless LAN Controller * Cisco 2100 Wireless LAN Controller * Cisco 4100 Wireless LAN Controller * Cisco 4400 Wireless LAN Controller *	4

References

http://securitytracker.com/id?1017908
http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml
http://www.osvdb.org/34136
http://www.securityfocus.com/bid/23461
http://www.vupen.com/english/advisories/2007/1368
https://exchange.xforce.ibmcloud.com/vulnerabilities/33609