wireless LAN
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Multiple Vulnerabilities in Cisco Wireless LAN Controllers
Advisory ID: cisco-sa-20120229-wlc
Revision 1.0
For Public Release 2012 February 29 16:00 UTC (GMT)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless
LAN Controllers
Advisory ID: cisco-sa-20090204-wlc
http://www.cisco.com/warp/public/707/cisco-sa-20090204-wlc.shtml
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Cisco Security Advisory: Cisco Wireless LAN Controllers Denial of
Service Vulnerability
Document ID: 112916
Advisory ID: cisco-sa-20110427-wlc
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers
Advisory ID: cisco-sa-20090727-wlc
http://www.cisco.com/warp/public/707/cisco-sa-20090727-wlc.shtml
- -------------------------------------------------------------------------------
Summary
=======
Customers who use the CiscoWorks Wireless LAN Solution Engine (WLSE) may use a
conversion utility to convert over to a Cisco Wireless Control System (WCS).
This conversion utility creates and uses administrative accounts with default
credentials. Because there is no requirement to change these credentials during
the conversion process, an attacker may be able to leverage the accounts that
have default credentials to take full administrative control of the WCS after
| Services Software (WAFS) | |
|----------------------------+-------------------------------|
| Cisco Wireless Control | CSCtd01625 |
| System | |
|----------------------------+-------------------------------|
| Cisco Wireless LAN | CSCtd01611 |
| Controller (WLAN) | |
|----------------------------+-------------------------------|
| Cisco Wireless Location | CSCtd04115 |
| Appliance | |
|----------------------------+-------------------------------|
Background
==========
The MadWifi driver provides support for Atheros based IEEE 802.11
Wireless Lan cards.
Affected packages
=================
-------------------------------------------------------------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless
LAN Controllers
Advisory ID: cisco-sa-20100908-wlc
Revision 1.0
* Cisco Prime Performance Manager
* Cisco TelePresence Server
* Cisco Unified Communications Manager (formerly Cisco CallManager)
* Cisco Unity
* Cisco Unity Connection
* Cisco Wireless LAN Controllers (WLC)
This section will be updated when more information is available.
Details
=======
SUMMARY
A persistent Cross Site Scripting vulnerability (XSS) was discovered
where an attacker
could plant an AP with maliciously crafted SSID in the general
vicinity of the wireless LAN
and might be able to trigger a XSS vulnerability in the reporting
sections of the ArubaOS
and AirWave Administration WebUIs.
AFFECTED VERSIONS
* Cisco PIX Security Appliances
* Cisco ASA Security Appliances
* Cisco Firewall Services Module (FWSM)
* Cisco Security Monitoring, Analysis, and Response System (MARS)
* Cisco Network Admission Control (NAC) Appliance
* CiscoWorks Wireless LAN Solution Engine (WLSE)
No other Cisco products are currently known to be affected by these
vulnerabilities.
Details
Affected Products
=================
Cisco NAC Guest Server provides guest policy enforcement to Cisco NAC
appliances and Cisco Wireless LAN Controllers, where guest policies
are enforced.
Vulnerable Products
+------------------
& AMG-2000 Manual v2.0, Jun-13-2007
Vulnerability overview:
-----------------------
AMG-2000 uses an internal Squid proxy to restrict access to the wireless LAN
or Internet, e.g. by supplying a username/password on the portal site (depends
on how the system is configured, e.g. on-demand "guest" users or
authentication via RADIUS, LDAP or NT domain). This built-in proxy is
misconfigured which leads to the following vulnerability:
About the Software" to obtain the software version.
Products Confirmed Not Vulnerable
+--------------------------------
Cisco Wireless LAN Controllers (WLC) are not affected by this
vulnerability. No other Cisco products are currently known to be
affected by this vulnerability.
Details
=======
Affected Products
=================
Cisco NAC Guest Server provides guest policy enforcement to Cisco NAC
appliances and Cisco Wireless LAN Controllers, where guest policies
are enforced.
Vulnerable Products
+------------------
================
An attacker can activate and get unauthorized access to the routers administration
interface and telnet/ftp/tftp services from internal network.
Every user in the LAN (or Wireless LAN) can nevertheless have access to the routers
administration interface and telnet/ftp/tftp!
If an attacker can get access to the administrator interface and login, he has full control
over the routers configuration.
Details
=======
The Cisco Wireless Control System is a centralized, systems-level
platform for managing and controlling lightweight access points,
wireless LAN controllers, and Wireless Location Appliances for the
Cisco Unified Wireless Network. The Cisco Wireless Control System uses
Apache Tomcat. A vulnerability in Apache Tomcat may allow for remote
code execution attacks. The mod_jk.so URI handler does not handle long
URLs correctly. An insecure memory copy triggers an exploitable stack
overflow. This vulnerability is documented in CVE-2007-0774 and in Cisco
|
