HomePentest-Tools.com Logo

Cisco Wireless LAN Controller TSM SNMP Denial of Service Vulnerability CVE-2016-6375

Severity
CVSSv3 Score
5.3
Vulnerability description

A vulnerability in the traffic stream metrics (TSM) implemented with the Inter-Access Point Protocol (IAPP) of the Cisco Wireless LAN Controller (WLC) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition because the process on the WLC unexpectedly restarts.

Risk description

The occurs when an SNMP request for TSM information is received. An attacker could exploit this vulnerability by sending crafted IAPP packets followed by an SNMP request for TSM information to the targeted device. An exploit could allow the attacker to cause a DoS condition when the WLC unexpectedly restarts.

Recommendation

Cisco has released software updates that address this vulnerability.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Sep 12, 2016
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available