Denial of service in Cisco Wireless LAN Controller
| Risk | Low |
| Patch available | NO |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2017-12280 CVE-2017-12282 |
| CWE-ID | CWE-20 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software Subscribe |
Cisco Wireless LAN Controller Hardware solutions / Firmware |
| Vendor | Cisco Systems, Inc |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Improper input validation
EUVDB-ID: #VU9089
Risk: Low
CVSSv3.1: 4 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:U/RL:U/RC:C]
CVE-ID: CVE-2017-12280
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows an remote attacker to cause DoS condition on the target system.
The weakness exists in the Control and Provisioning of Wireless Access Points (CAPWAP) Discovery Request parsing functionality of Cisco Wireless LAN Controllers due to incomplete input validation of fields in CAPWAP Discovery Request packets. An remote attacker can send a specially crafted CAPWAP Discovery Request packets and cause the device to reload.
Successful exploitation of the vulnerability results in denial of service.
Cubersecurity Help is currently unaware of any solutions addressing the vulnerability.
Cisco Wireless LAN Controller: 8.0.133.0
External linkshttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171101-wlc3
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Improper input validation
EUVDB-ID: #VU9090
Risk: Low
CVSSv3.1: 4 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:U/RL:U/RC:C]
CVE-ID: CVE-2017-12282
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows an Layer 2 RF-adjacent attacker to cause DoS condition on the target system.
The weakness exists in the Access Network Query Protocol (ANQP) ingress frame processing functionality of Cisco Wireless LAN Controllers due to incomplete input validation of of ANQP query frames. An remote attacker can send a malformed ANQP query frame that is on an RF-adjacent network and cause the device to restart.
Successful exploitation of the vulnerability results in denial of service.
Cubersecurity Help is currently unaware of any solutions addressing the vulnerability.
Cisco Wireless LAN Controller: 8.0.140.0 - 8.2.121.11
External linkshttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171101-wlc4
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
