Vulnerabilities > CVE-2012-5991 - Unspecified vulnerability in Cisco products

CVSS 6.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

SINGLE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

cisco

exploit available

NVD

Published: 2012-12-19

Updated: 2013-01-30

Summary

screens/base/web_auth_custom.html on Cisco Wireless LAN Controller (WLC) devices with software 7.2.110.0 allows remote authenticated users to cause a denial of service (device reload) via a certain buttonClicked value in an internal webauth_type request, aka Bug ID CSCud50209.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco Wireless LAN Controller Software 7.2.110.0	1
Hardware	Cisco Cisco 2000 Wireless LAN Controller * Cisco 2100 Wireless LAN Controller * Cisco 2500 Wireless LAN Controller - Cisco 4100 Wireless LAN Controller * Cisco 4400 Wireless LAN Controller * Cisco 5500 Wireless LAN Controller - Cisco 7500 Wireless LAN Controller - Cisco 8500 Wireless LAN Controller -	8

Exploit-Db

description	Cisco Wireless Lan Controller 7.2.110.0 - Multiple Vulnerabilities. CVE-2012-5991,CVE-2012-5992,CVE-2012-6007. Dos exploit for hardware platform
id	EDB-ID:23361
last seen	2016-02-02
modified	2012-12-13
published	2012-12-13
reporter	Jacob Holcomb
source	https://www.exploit-db.com/download/23361/
title	Cisco Wireless Lan Controller 7.2.110.0 - Multiple Vulnerabilities

Packetstorm

data source	https://packetstormsecurity.com/files/download/118831/cisco-xsrfxssdos.txt
id	PACKETSTORM:118831
last seen	2016-12-05
published	2012-12-13
reporter	Jacob Holcomb
source	https://packetstormsecurity.com/files/118831/Cisco-Wireless-Lan-Controller-7.2.110.0-XSS-CSRF-DoS.html
title	Cisco Wireless Lan Controller 7.2.110.0 XSS / CSRF / DoS

Seebug

bulletinFamily	exploit
description	No description provided by source.
id	SSV:77129
last seen	2017-11-19
modified	2014-07-01
published	2014-07-01
reporter	Root
source	https://www.seebug.org/vuldb/ssvid-77129
title	Cisco Wireless Lan Controller 7.2.110.0 - Multiple Vulnerabilities

References

http://infosec42.blogspot.dk/2012/12/cisco-wlc-csrf-dos-and-persistent-xss.html