CVE-2012-5991

screens/base/web_auth_custom.html on Cisco Wireless LAN Controller (WLC) devices with software 7.2.110.0 allows remote authenticated users to cause a denial of service (device reload) via a certain buttonClicked value in an internal webauth_type request, aka Bug ID CSCud50209.

Published: Dec 19, 2012
Updated: Apr 13, 2023
CVE: CVE-2012-5991
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.3
AV:N/AC:M/Au:S/C:N/I:N/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
cisco / wireless_lan_controller_software	7.2.110.0	7.2.110.0.x
cisco / 2000_wireless_lan_controller	-	-
cisco / 2100_wireless_lan_controller	-	-
cisco / 4100_wireless_lan_controller	-	-
cisco / 4400_wireless_lan_controller	-	-

http://infosec42.blogspot.dk/2012/12/cisco-wlc-csrf-dos-and-persistent-xss.html

Vulnerability Database

289,599

CVE-2012-5991