#VU9087 Memory leak in Cisco Wireless LAN Controller
Vulnerability identifier: #VU9087
Vulnerability risk: Low
CVSSv3.1: 3.8 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-401
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
Cisco Wireless LAN Controller
Hardware solutions /
Firmware
Vendor: Cisco Systems, Inc
Description
The vulnerability allows a remote authenticated attacker to cause DoS condition on the target system.
The weakness exists in the Simple Network Management Protocol (SNMP) subsystem of Cisco Wireless LAN Controllers due to a memory leak after the device fails to deallocate a buffer that is used when certain MIBs are polled. A remote attacker who knows the SNMP Version 2 SNMP Read string or has valid SNMP Version 3 credentials can repeatedly poll the affected MIB object IDs (OIDs), consume available memory and cause the system to reload.
Successful exploitation of the vulnerability results in denial of service.
Mitigation
Install update from vendor's website (8.0.152.0, 8.2.164.0, 8.3.132.0, 8.4.100.0).
Vulnerable software versions
Cisco Wireless LAN Controller: 8.2.130.202 - 8.3.102.15
External links
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171101-wlc1
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
