漏洞信息详情
Cisco WLC, Cisco Catalyst 6500 WiSM和Cisco Catalyst 3750 Integrated WLC 拒绝服务和权限提升漏洞
- CNNVD编号:CNNVD-200902-100
- 危害等级: 高危
- CVE编号: CVE-2009-0061
- 漏洞类型: 输入验证
- 发布时间: 2009-02-05
- 威胁类型: 远程
- 更新时间: 2009-03-06
- 厂 商: cisco
- 漏洞来源: Cisco安全公告
漏洞简介
Cisco无线LAN控制器(WLC)使用轻量级接入点协议(LWAPP)管理Cisco Aironet接入点。
Cisco WLC, Cisco Catalyst 6500 WiSM和Cisco Catalyst 3750 Integrated WLC中存在多个安全漏洞,允许恶意用户导致拒绝服务或绕过某些安全限制。受影响的Cisco WLC、WiSM和Catalyst 3750无线LAN控制器型号在接收到某些IP报文时可能出现拒绝服务的情况,受影响设备接收到这些报文可能变得没有响应,必须重启才能恢复。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
cisco-sa-20090204-wlc:Multiple Vulnerabilities in Cisco Wireless LAN Controllers
http://www.cisco.com/warp/public/707/cisco-sa-20090204-wlc.sHTML
参考网址
来源: SECTRACK
名称: 1021679
链接:http://www.securitytracker.com/id?1021679
来源: BID
名称: 33608
链接:http://www.securityfocus.com/bid/33608
来源: CISCO
名称: 20090204 Multiple Vulnerabilities in Cisco Wireless LAN Controllers
链接:http://www.cisco.com/en/US/products/products_security_advisory09186a0080a6c1dd.sHTML
来源: SECUNIA
名称: 33749
链接:http://secunia.com/advisories/33749
受影响实体
- Cisco Catalyst_7600_series_wireless_lan_controller:5.0
- Cisco Catalyst_3750_series_integrated_wireless_lan_controller:5.0
- Cisco Catalyst_6500_series_integrated_wireless_lan_controller:5.0
- Cisco 4400_wireless_lan_controller:5.0
- Cisco Wireless_lan_controller:5.0
补丁
暂无
![weinxin](http://zone.ci/zone_ci_images/zone.ci.png)
评论