CVE-2014-0701

Cisco Wireless LAN Controller (WLC) devices 7.0 before 7.0.250.0, 7.2, 7.3, and 7.4 before 7.4.110.0 do not properly deallocate memory, which allows remote attackers to cause a denial of service (reboot) by sending WebAuth login requests at a high rate, aka Bug ID CSCuf52361.

Published: Mar 6, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-0701
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-399

Affected Software
References

Software	From	Fixed in
cisco / wireless_lan_controller_software	7.0	7.0.x
cisco / wireless_lan_controller_software	7.0.220.0	7.0.220.0.x
cisco / wireless_lan_controller_software	7.0.235.0	7.0.235.0.x
cisco / wireless_lan_controller_software	7.2	7.2.x
cisco / wireless_lan_controller_software	7.2.103.0	7.2.103.0.x
cisco / wireless_lan_controller_software	7.2.110.0	7.2.110.0.x
cisco / wireless_lan_controller_software	7.3	7.3.x
cisco / wireless_lan_controller_software	7.3.101.0	7.3.101.0.x
cisco / wireless_lan_controller_software	7.4.100.0	7.4.100.0.x
cisco / wireless_lan_controller_software	7.4.100.60	7.4.100.60.x

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140305-wlc

Vulnerability Database

289,599

CVE-2014-0701