CVE-2009-2976 - OpenCVE

Cisco Aironet Lightweight Access Point (AP) devices send the contents of certain multicast data frames in cleartext, which allows remote attackers to discover Wireless LAN Controller MAC addresses and IP addresses, and AP configuration details, by sniffing the wireless network.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:C/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Cisco	Aironet Ap1200 Aironet Ap1100

Configuration 1 [-]

OR	cpe:2.3:h:cisco:aironet_ap1100::::::::
	cpe:2.3:h:cisco:aironet_ap1200::::::::

References

Link	Resource
http://securitytracker.com/id?1022774
http://www.airmagnet.com/assets/AM_Technote_SkyJack_082509.pdf
http://www.airmagnet.com/news/press_releases/2009/08252009.php

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2022-10-03T16:24:06

Updated: 2022-10-03T16:24:06

Reserved: 2022-10-03T00:00:00

Link: CVE-2009-2976

JSON object: View

NVD Information

Status : Analyzed

Published: 2009-08-27T17:30:00.360

Modified: 2009-08-28T04:00:00.000

Link: CVE-2009-2976

JSON object: View

Redhat Information

No data.

CWE

CWE-310

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Cisco Aironet Lightweight Access Point (AP) devices send the contents of certain multicast data frames in cleartext, which allows remote attackers to discover Wireless LAN Controller MAC addresses and IP addresses, and AP configuration details, by sniffing the wireless network."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-10-03T16:24:06", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://www.airmagnet.com/assets/AM_Technote_SkyJack_082509.pdf"}, {"name": "1022774", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1022774"}, {"tags": ["x_refsource_MISC"], "url": "http://www.airmagnet.com/news/press_releases/2009/08252009.php"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-2976", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cisco Aironet Lightweight Access Point (AP) devices send the contents of certain multicast data frames in cleartext, which allows remote attackers to discover Wireless LAN Controller MAC addresses and IP addresses, and AP configuration details, by sniffing the wireless network."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.airmagnet.com/assets/AM_Technote_SkyJack_082509.pdf", "refsource": "MISC", "url": "http://www.airmagnet.com/assets/AM_Technote_SkyJack_082509.pdf"}, {"name": "1022774", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1022774"}, {"name": "http://www.airmagnet.com/news/press_releases/2009/08252009.php", "refsource": "MISC", "url": "http://www.airmagnet.com/news/press_releases/2009/08252009.php"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2009-2976", "datePublished": "2022-10-03T16:24:06", "dateReserved": "2022-10-03T00:00:00", "dateUpdated": "2022-10-03T16:24:06", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}