HomePentest-Tools.com Logo

Cisco Wireless LAN Controller HTTP Parsing Denial of Service Vulnerability CVE-2016-1363

Severity
CVSSv3 Score
9.8
Vulnerability description

A vulnerability in the HTTP URL redirect feature of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to cause a buffer overflow condition on an affected device, resulting in a denial of service (DoS) condition.

Risk description

An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to cause a buffer overflow condition on the device, which could allow the attacker to cause the device to reload, resulting in a DoS condition, or execute arbitrary code on the device.

Recommendation

Updates are available.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Apr 21, 2016
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available