CVE-2007-2038 - OpenCVE

The Network Processing Unit (NPU) in the Cisco Wireless LAN Controller (WLC) before 3.2.193.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service (loss of packet forwarding) via (1) crafted SNAP packets, (2) malformed 802.11 traffic, or (3) packets with certain header length values, aka Bug ID CSCsg36361.

No CVSS v3.1

No CVSS v3.0

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

AV:A/AC:L/Au:N/C:N/I:N/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Cisco	4100 Wireless Lan Controller 4400 Wireless Lan Controller 2000 Wireless Lan Controller 2100 Wireless Lan Controller

Configuration 1 [-]

OR	cpe:2.3:h:cisco:2000_wireless_lan_controller::::::::
	cpe:2.3:h:cisco:2100_wireless_lan_controller::::::::
	cpe:2.3:h:cisco:4100_wireless_lan_controller::::::::
	cpe:2.3:h:cisco:4400_wireless_lan_controller::::::::

References

Link	Resource
http://securitytracker.com/id?1017908
http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml	Vendor Advisory
http://www.osvdb.org/34136
http://www.securityfocus.com/bid/23461
http://www.vupen.com/english/advisories/2007/1368
https://exchange.xforce.ibmcloud.com/vulnerabilities/33609

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2007-04-16T21:00:00

Updated: 2017-07-28T12:57:01

Reserved: 2007-04-16T00:00:00

Link: CVE-2007-2038

JSON object: View

NVD Information

Status : Modified

Published: 2007-04-16T21:19:00.000

Modified: 2017-07-29T01:31:11.830

Link: CVE-2007-2038

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-04-12T00:00:00", "descriptions": [{"lang": "en", "value": "The Network Processing Unit (NPU) in the Cisco Wireless LAN Controller (WLC) before 3.2.193.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service (loss of packet forwarding) via (1) crafted SNAP packets, (2) malformed 802.11 traffic, or (3) packets with certain header length values, aka Bug ID CSCsg36361."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "ADV-2007-1368", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/1368"}, {"name": "20070412 Multiple Vulnerabilities in the Cisco Wireless LAN Controller and Cisco Lightweight Access Points", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml"}, {"name": "1017908", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1017908"}, {"name": "cisco-wlc-npu-traffic-dos(33609)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33609"}, {"name": "34136", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/34136"}, {"name": "23461", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/23461"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-2038", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Network Processing Unit (NPU) in the Cisco Wireless LAN Controller (WLC) before 3.2.193.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service (loss of packet forwarding) via (1) crafted SNAP packets, (2) malformed 802.11 traffic, or (3) packets with certain header length values, aka Bug ID CSCsg36361."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "ADV-2007-1368", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/1368"}, {"name": "20070412 Multiple Vulnerabilities in the Cisco Wireless LAN Controller and Cisco Lightweight Access Points", "refsource": "CISCO", "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml"}, {"name": "1017908", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1017908"}, {"name": "cisco-wlc-npu-traffic-dos(33609)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33609"}, {"name": "34136", "refsource": "OSVDB", "url": "http://www.osvdb.org/34136"}, {"name": "23461", "refsource": "BID", "url": "http://www.securityfocus.com/bid/23461"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-2038", "datePublished": "2007-04-16T21:00:00", "dateReserved": "2007-04-16T00:00:00", "dateUpdated": "2017-07-28T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:2000_wireless_lan_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "65B6A979-5487-4ABF-AD66-522442D6DC38", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:2100_wireless_lan_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "24B6D315-BBA5-4C37-BB74-BD1ADCA77F69", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:4100_wireless_lan_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "97790CF3-F428-499C-A175-1DB8380432F0", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:4400_wireless_lan_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "62DD77D6-9809-4B8B-A19F-1D10449C546F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The Network Processing Unit (NPU) in the Cisco Wireless LAN Controller (WLC) before 3.2.193.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service (loss of packet forwarding) via (1) crafted SNAP packets, (2) malformed 802.11 traffic, or (3) packets with certain header length values, aka Bug ID CSCsg36361."}, {"lang": "es", "value": "La Network Processing Unit (NPU) en el Cisco Wireless LAN Controller (WLC) anterior a 3.2.193.5, 4.0.x anterior a 4.0.206.0, y 4.1.x permite a atacantes remotos en una red local provocar una denegaci\u00f3n de servicio (p\u00e9rdida de reenv\u00edo de paquetes) mediante (1)paquetes SNAP manipulados, (2) tr\u00e1fico 802.11 mal formado, o (3) paquetes con determinados valores de longitud de cabecera, tambi\u00e9n conocido como Bug ID CSCsg36361."}], "id": "CVE-2007-2038", "lastModified": "2017-07-29T01:31:11.830", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 6.5, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-04-16T21:19:00.000", "references": [{"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1017908"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/34136"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/23461"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/1368"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33609"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}