发布日期：2012-02-29
更新日期：2012-02-29

受影响系统：

Cisco Wireless LAN Controller 7.2
Cisco Wireless LAN Controller 7.1
Cisco Wireless LAN Controller 7.0
Cisco Wireless LAN Controller 6.0
Cisco Wireless LAN Controller 5.2
Cisco Wireless LAN Controller 5.1
Cisco Wireless LAN Controller 5.0
Cisco Wireless LAN Controller 4.2 M
Cisco Wireless LAN Controller 4.2
Cisco Wireless LAN Controller 4.1 M
Cisco Wireless LAN Controller 4.1
Cisco Wireless LAN Controller 4.0

不受影响系统：

Cisco Wireless LAN Controller 7.2.103.0
Cisco Wireless LAN Controller 7.1.91.0
Cisco Wireless LAN Controller 7.0.220.0

描述：

---

BUGTRAQ  ID: 52215
CVE ID: CVE-2012-0371

Cisco WLC 负责全系统的无线LAN功能，例如安全策略、入侵保护、RF管理，服务质量和移动性。

Cisco WLC在实现上存在远程拒绝服务漏洞，未验证的攻击者通过了解到TCP端口1023连接到控制器，在无线控制器中配置了ACLs时，利用此漏洞查看和修改配置。此漏洞其Cisco bug ID CSCtu56709。受影响版本：Cisco 4400 Series WLCs、WiSM version 1、Cisco Catalyst 3750G Integrated WLCs。

<*来源：Cisco
  
  链接：http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120229-wlc
*>

建议：

---

厂商补丁：

Cisco
-----
Cisco已经为此发布了一个安全公告（cisco-sa-20120229-wlc）以及相应补丁:

cisco-sa-20120229-wlc：Multiple Vulnerabilities in Cisco Wireless LAN Controllers

链接：http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120229-wlc

浏览次数：2460
严重程度：0（网友投票）