Vulnerability Details CVE-2007-2039
The Network Processing Unit (NPU) in the Cisco Wireless LAN Controller (WLC) before 3.2.171.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service (loss of packet forwarding) via (1) crafted SNAP packets, (2) malformed 802.11 traffic, or (3) packets with certain header length values, aka Bug IDs CSCsg15901 and CSCsh10841.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.3%
CVSS Severity
CVSS v2 Score 6.1
References
- http://securitytracker.com/id?1017908
- http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml
- http://www.osvdb.org/34137
- http://www.osvdb.org/34139
- http://www.securityfocus.com/bid/23461
- http://www.vupen.com/english/advisories/2007/1368
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33609
- http://securitytracker.com/id?1017908
- http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml
- http://www.osvdb.org/34137
- http://www.osvdb.org/34139
- http://www.securityfocus.com/bid/23461
- http://www.vupen.com/english/advisories/2007/1368
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33609
Products affected by CVE-2007-2039
-
cpe:2.3:o:cisco:wireless_lan_controller_software:3.2
-
cpe:2.3:o:cisco:wireless_lan_controller_software:3.2.116.21
-
cpe:2.3:o:cisco:wireless_lan_controller_software:3.2.150.10
-
cpe:2.3:o:cisco:wireless_lan_controller_software:3.2.150.6
-
cpe:2.3:o:cisco:wireless_lan_controller_software:3.2.78.0
-
cpe:2.3:o:cisco:wireless_lan_controller_software:4.0
-
cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.108
-
cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.155.0
-
cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.155.5
-
cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.179.11
-
cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.179.8
-
cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.196
-
cpe:2.3:o:cisco:wireless_lan_controller_software:4.1