You are here
Home > Preporuke > Ranjivost u Cisco Aironet 1560, 2800 i 3800 serijama uređaja

Ranjivost u Cisco Aironet 1560, 2800 i 3800 serijama uređaja

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: CIS

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA1

Cisco Security Advisory: Cisco Aironet 1560, 2800, and 3800 Series Access Point Platforms 802.11 Denial of Service Vulnerability

Advisory ID: cisco-sa-20171101-aironet1

Revision: 1.0

For Public Release: 2017 November 1 16:00 GMT

Last Updated: 2017 November 1 16:00 GMT

CVE ID(s): CVE-2017-12273

CVSS Score v(3): 7.4 CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

+———————————————————————

Summary
=======
A vulnerability in 802.11 association request frame processing for the Cisco Aironet 1560, 2800, and 3800 Series Access Points could allow an unauthenticated, Layer 2 radio frequency (RF) adjacent attacker to cause the Access Point (AP) to reload, resulting in a denial of service (DoS) condition.

The vulnerability is due to insufficient frame validation of the 802.11 association request. An attacker could exploit this vulnerability by sending a malformed 802.11 association request to the targeted device. An exploit could allow the attacker to cause the AP to reload, resulting in a DoS condition while the AP is reloading.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171101-aironet1 [“https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171101-aironet1”]

—–BEGIN PGP SIGNATURE—–
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=tCk4
—–END PGP SIGNATURE—–

_______________________________________________
cust-security-announce mailing list
cust-security-announce@cisco.com
To unsubscribe, send the command “unsubscribe” in the subject of your message to cust-security-announce-leave@cisco.com

AutorDanijel Kozinovic
Cert idNCERT-REF-2017-11-0025-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
Izvorhttp://www.adobe.com/
Top
More in Preporuke
Ranjivost Cisco Wireless LAN Controller (WLC) softvera

Otkrivena je ranjivost SNMP (Simple Network Management Protocol) protokola u Cisco Wireless LAN Controller (WLC) softveru, a uzrokovana je curenjem...

Close