CVE-2009-0061Improper Input Validation in Cisco 4400 Wireless LAN Controller

CWE-20Improper Input ValidationCWE-264CWE-3994 documents4 sources
Severity
7.8HIGHNVD
EPSS
0.6%
top 31.27%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Cisco 4400 Wireless LAN ControllerCisco Catalyst 3750 Series Integrated Wireless LAN ControllerCisco Catalyst 6500 Series Integrated Wireless LAN Controller+2 more
Timeline
PublishedFeb 5
Latest updateMay 2

Description

Unspecified vulnerability in the Wireless LAN Controller (WLC) TSEC driver in the Cisco 4400 WLC, Cisco Catalyst 6500 and 7600 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.x before 4.2.176.0 and 5.x before 5.1 allows remote attackers to cause a denial of service (device crash or hang) via unknown IP packets.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages5 packages

🔴Vulnerability Details

2
GHSA
GHSA-j393-2fg5-f478: Unspecified vulnerability in the Wireless LAN Controller (WLC) TSEC driver in the Cisco 4400 WLC, Cisco Catalyst 6500 and 7600 Wireless Services Modul2022-05-02
CVEList
CVE-2009-0061: Unspecified vulnerability in the Wireless LAN Controller (WLC) TSEC driver in the Cisco 4400 WLC, Cisco Catalyst 6500 and 7600 Wireless Services Modul2009-02-05

📋Vendor Advisories

1
Cisco
Multiple Vulnerabilities in Cisco Wireless LAN Controllers2009-02-04
CVE-2009-0061 — Improper Input Validation in Cisco | cvebase