CVE-2007-2039

The Network Processing Unit (NPU) in the Cisco Wireless LAN Controller (WLC) before 3.2.171.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service (loss of packet forwarding) via (1) crafted SNAP packets, (2) malformed 802.11 traffic, or (3) packets with certain header length values, aka Bug IDs CSCsg15901 and CSCsh10841.

Published: Apr 16, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-2039
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.1
AV:A/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-399

Affected Software
References

Software	From	Fixed in
cisco / wireless_lan_controller_software	3.2	3.2.171.5
cisco / wireless_lan_controller_software	4.0	4.0.206.0
cisco / wireless_lan_controller_software	4.1	4.1.171.0

http://securitytracker.com/id?1017908
http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml
http://www.osvdb.org/34137
http://www.osvdb.org/34139
http://www.securityfocus.com/bid/23461
http://www.vupen.com/english/advisories/2007/1368
https://exchange.xforce.ibmcloud.com/vulnerabilities/33609

Vulnerability Database

289,697

CVE-2007-2039