CVE-2007-2039 - OpenCVE

The Network Processing Unit (NPU) in the Cisco Wireless LAN Controller (WLC) before 3.2.171.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service (loss of packet forwarding) via (1) crafted SNAP packets, (2) malformed 802.11 traffic, or (3) packets with certain header length values, aka Bug IDs CSCsg15901 and CSCsh10841.

No CVSS v3.1

No CVSS v3.0

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

AV:A/AC:L/Au:N/C:N/I:N/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Cisco	Wireless Lan Controller Software

Configuration 1 [-]

OR	cpe:2.3:o:cisco:wireless_lan_controller_software::::::::
	cpe:2.3:o:cisco:wireless_lan_controller_software::::::::
	cpe:2.3:o:cisco:wireless_lan_controller_software::::::::

References

Link	Resource
http://securitytracker.com/id?1017908	Third Party Advisory VDB Entry
http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml	Patch Vendor Advisory
http://www.osvdb.org/34137	Broken Link
http://www.osvdb.org/34139	Broken Link
http://www.securityfocus.com/bid/23461	Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2007/1368	Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/33609	Third Party Advisory VDB Entry

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2007-04-16T21:00:00

Updated: 2017-07-28T12:57:01

Reserved: 2007-04-16T00:00:00

Link: CVE-2007-2039

JSON object: View

NVD Information

Status : Analyzed

Published: 2007-04-16T21:19:00.000

Modified: 2018-11-01T16:55:29.147

Link: CVE-2007-2039

JSON object: View

Redhat Information

No data.

CWE

CWE-399

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-04-12T00:00:00", "descriptions": [{"lang": "en", "value": "The Network Processing Unit (NPU) in the Cisco Wireless LAN Controller (WLC) before 3.2.171.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service (loss of packet forwarding) via (1) crafted SNAP packets, (2) malformed 802.11 traffic, or (3) packets with certain header length values, aka Bug IDs CSCsg15901 and CSCsh10841."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "ADV-2007-1368", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/1368"}, {"name": "20070412 Multiple Vulnerabilities in the Cisco Wireless LAN Controller and Cisco Lightweight Access Points", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml"}, {"name": "34137", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/34137"}, {"name": "1017908", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1017908"}, {"name": "cisco-wlc-npu-traffic-dos(33609)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33609"}, {"name": "34139", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/34139"}, {"name": "23461", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/23461"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-2039", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Network Processing Unit (NPU) in the Cisco Wireless LAN Controller (WLC) before 3.2.171.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service (loss of packet forwarding) via (1) crafted SNAP packets, (2) malformed 802.11 traffic, or (3) packets with certain header length values, aka Bug IDs CSCsg15901 and CSCsh10841."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "ADV-2007-1368", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/1368"}, {"name": "20070412 Multiple Vulnerabilities in the Cisco Wireless LAN Controller and Cisco Lightweight Access Points", "refsource": "CISCO", "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml"}, {"name": "34137", "refsource": "OSVDB", "url": "http://www.osvdb.org/34137"}, {"name": "1017908", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1017908"}, {"name": "cisco-wlc-npu-traffic-dos(33609)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33609"}, {"name": "34139", "refsource": "OSVDB", "url": "http://www.osvdb.org/34139"}, {"name": "23461", "refsource": "BID", "url": "http://www.securityfocus.com/bid/23461"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-2039", "datePublished": "2007-04-16T21:00:00", "dateReserved": "2007-04-16T00:00:00", "dateUpdated": "2017-07-28T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*", "matchCriteriaId": "9A71200B-AF6E-4B81-B204-F6320BD576E1", "versionEndExcluding": "3.2.171.5", "versionStartIncluding": "3.2", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*", "matchCriteriaId": "4FE93BEF-E6EC-45B4-8975-6C0C47964602", "versionEndExcluding": "4.0.206.0", "versionStartIncluding": "4.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*", "matchCriteriaId": "20DDC3CF-FB18-4377-A0B8-D060A2F027F6", "versionEndExcluding": "4.1.171.0", "versionStartIncluding": "4.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The Network Processing Unit (NPU) in the Cisco Wireless LAN Controller (WLC) before 3.2.171.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service (loss of packet forwarding) via (1) crafted SNAP packets, (2) malformed 802.11 traffic, or (3) packets with certain header length values, aka Bug IDs CSCsg15901 and CSCsh10841."}, {"lang": "es", "value": "La Network Processing Unit (NPU) en el Cisco Wireless LAN Controller (WLC) anterior a 3.2.171.5, 4.0.x anterior a 4.0.206.0, y 4.1.x permite a atacantes remotos en una red local inal\u00e1mbrica provocar una denegaci\u00f3n de servicio (perdida de reenv\u00edo de paquetes) mediante (1) paquetes SNAP manipulados, (2) tr\u00e1fico 802.11 manipulado, o (3) paquetes con determinados valores de longitud de cabecera, tambi\u00e9n conocido como Bug IDs CSCsg15901 y CSCsh10841."}], "id": "CVE-2007-2039", "lastModified": "2018-11-01T16:55:29.147", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 6.5, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-04-16T21:19:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://securitytracker.com/id?1017908"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.osvdb.org/34137"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.osvdb.org/34139"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/23461"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://www.vupen.com/english/advisories/2007/1368"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33609"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-399"}], "source": "nvd@nist.gov", "type": "Primary"}]}