Vulnerabilities > Cisco > Catalyst 3750 Series Integrated Wireless LAN Controller

DATE CVE VULNERABILITY TITLE RISK
2009-02-05 CVE-2009-0062 Permissions, Privileges, and Access Controls vulnerability in Cisco products
Unspecified vulnerability in the Cisco Wireless LAN Controller (WLC), Cisco Catalyst 6500 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.2.173.0 allows remote authenticated users to gain privileges via unknown vectors, as demonstrated by escalation from the (1) Lobby Admin and (2) Local Management User privilege levels.
network
low complexity
cisco CWE-264
critical
9.0
2009-02-05 CVE-2009-0061 Improper Input Validation vulnerability in Cisco products
Unspecified vulnerability in the Wireless LAN Controller (WLC) TSEC driver in the Cisco 4400 WLC, Cisco Catalyst 6500 and 7600 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.x before 4.2.176.0 and 5.x before 5.1 allows remote attackers to cause a denial of service (device crash or hang) via unknown IP packets.
network
low complexity
cisco CWE-20
7.8
2009-02-05 CVE-2009-0059 Improper Input Validation vulnerability in Cisco products
The Cisco Wireless LAN Controller (WLC), Cisco Catalyst 6500 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.x before 4.2.176.0 and 5.2.x before 5.2.157.0 allow remote attackers to cause a denial of service (device reload) via a web authentication (aka WebAuth) session that includes a malformed POST request to login.html.
network
low complexity
cisco CWE-20
7.8
2009-02-05 CVE-2009-0058 Improper Input Validation vulnerability in Cisco products
The Cisco Wireless LAN Controller (WLC), Cisco Catalyst 6500 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.x before 4.2.176.0 and 5.x before 5.2 allow remote attackers to cause a denial of service (web authentication outage or device reload) via unspecified network traffic, as demonstrated by a vulnerability scanner.
low complexity
cisco CWE-20
6.1