Vulnerabilities > CVE-2015-6311 - Resource Management Errors vulnerability in Cisco Wireless LAN Controller 7.0(240.0)/7.3(101.0)/7.4(1.19)
Attack vector
ADJACENT_NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
Cisco Wireless LAN Controller (WLC) devices with software 7.0(240.0), 7.3(101.0), and 7.4(1.19) allow remote attackers to cause a denial of service (device outage) by sending malformed 802.11i management data to a managed access point, aka Bug ID CSCub65236.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
Common Weakness Enumeration (CWE)
Nessus
NASL family | CISCO |
NASL id | CISCO-SA-20151002-WLC.NASL |
description | According to its self-reported version, the remote Cisco Wireless LAN Controller (WLC) device is affected by a denial of service vulnerability due to not discarding malformed values within an 802.11i management frame received from a wireless client. An unauthenticated, adjacent attacker can exploit this, by sending a specifically crafted frame to an access point managed by the WLC device, to cause a denial of service condition. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 92457 |
published | 2016-07-20 |
reporter | This script is Copyright (C) 2016-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/92457 |
title | Cisco Wireless LAN Controller 802.11i Management Frame DoS |
code |
|