CVE-2009-0059

Опубликовано: 05 фев. 2009

Источник: nvd

CVSS2: 7.8

EPSS Низкий

Описание

The Cisco Wireless LAN Controller (WLC), Cisco Catalyst 6500 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.x before 4.2.176.0 and 5.2.x before 5.2.157.0 allow remote attackers to cause a denial of service (device reload) via a web authentication (aka WebAuth) session that includes a malformed POST request to login.html.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:h:cisco:4400_wireless_lan_controller:4.1:*:*:*:*:*:*:*

cpe:2.3:h:cisco:4400_wireless_lan_controller:4.2:*:*:*:*:*:*:*

cpe:2.3:h:cisco:4400_wireless_lan_controller:5.2:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_3750_series_integrated_wireless_lan_controller:4.1:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_3750_series_integrated_wireless_lan_controller:4.2:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_3750_series_integrated_wireless_lan_controller:5.2:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_6500_series_integrated_wireless_lan_controller:4.1:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_6500_series_integrated_wireless_lan_controller:4.2:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_6500_series_integrated_wireless_lan_controller:5.2:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_7600_series_wireless_lan_controller:4.1:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_7600_series_wireless_lan_controller:4.2:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_7600_series_wireless_lan_controller:5.2:*:*:*:*:*:*:*

cpe:2.3:o:cisco:wireless_lan_controller_software:4.1:*:*:*:*:*:*:*

cpe:2.3:o:cisco:wireless_lan_controller_software:4.2:*:*:*:*:*:*:*

cpe:2.3:o:cisco:wireless_lan_controller_software:5.2:*:*:*:*:*:*:*

EPSS

Процентиль: 76%

0.00985

Низкий

7.8 High

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-rx2v-3wf7-5g3c

github

почти 4 года назад