Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller (WLC) software 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service (ARP storm) via a broadcast ARP packet that targets the IP address of a known client context, aka CSCsj50374.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| 4100_wireless_lan_controller | Cisco | * | * |
| 4400_wireless_lan_controller | Cisco | * | * |
| Airespace_4000_wireless_lan_controller | Cisco | * | * |
| Catalyst_3750 | Cisco | * | * |
| Catalyst_6500 | Cisco | * | * |
References
- http://secunia.com/advisories/26161
- http://www.cisco.com/en/US/products/products_security_advisory09186a008088ab28.shtml
- http://www.securityfocus.com/bid/25043
- http://www.securitytracker.com/id?1018444
- http://www.vupen.com/english/advisories/2007/2636
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35576
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44591
- http://secunia.com/advisories/26161
- http://www.cisco.com/en/US/products/products_security_advisory09186a008088ab28.shtml
- http://www.securityfocus.com/bid/25043
- http://www.securitytracker.com/id?1018444
- http://www.vupen.com/english/advisories/2007/2636
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35576
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44591