Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-1105

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2013-1105
Last Modified 02 Feb 2013 12:11:42
Published 24 Jan 2013 04:55:06
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2013-1105

Summary

Cisco Wireless LAN Controller (WLC) devices with software 7.0 before 7.0.235.3, 7.1 and 7.2 before 7.2.111.3, and 7.3 before 7.3.101.0 allow remote authenticated users to bypass wireless-management settings and read or modify the device configuration via an SNMP request, aka Bug ID CSCua60653.

Vulnerable Systems

Operating System

  • Cisco Wireless Lan Controller Software 7.0

  • Cisco Wireless Lan Controller Software 7.0.220.0

  • Cisco Wireless Lan Controller Software 7.0.98.0

  • Cisco Wireless Lan Controller Software 7.1

  • Cisco Wireless Lan Controller Software 7.2

  • Cisco Wireless Lan Controller Software 7.2.103.0

  • Cisco Wireless Lan Controller Software 7.2.110.0

  • Cisco Wireless Lan Controller Software 7.3


References

CISCO - 20130123 Multiple Vulnerabilities in Cisco Wireless LAN Controllers

XF - cisco-wlc-unauth-access(81490)

SECTRACK - 1028027

BID - 57524

SECUNIA - 51965

OSVDB - 89532


Last Updated: 27 May 2016 11:01:44