Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.1
CVSSv2

CVE-2016-9194

Published: 06/04/2017 Updated: 12/07/2017
CVSS v2 Base Score: 6.1 | Impact Score: 6.9 | Exploitability Score: 6.5
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 543
Vector: AV:A/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Wireless Lan Controller

Vulnerability Summary

A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the 802.11 WME packet header. An attacker could exploit this vulnerability by sending malformed 802.11 WME frames to a targeted device. A successful exploit could allow the malicious user to cause the WLC to reload unexpectedly. The fixed versions are 8.0.140.0, 8.2.130.0, and 8.3.111.0. Cisco Bug IDs: CSCva86353.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

cisco wireless lan controller 8.1.104.37

cisco wireless lan controller 6.0_base

cisco wireless lan controller 5.2.157.0

cisco wireless lan controller 7.5.102.11

cisco wireless lan controller 8.1.111.0

cisco wireless lan controller 7.0 240.0

cisco wireless lan controller 7.4 1.19

cisco wireless lan controller 7.0 220.0

cisco wireless lan controller 7.0 98.0

cisco wireless lan controller 7.2 103.0

cisco wireless lan controller 8.1.0

cisco wireless lan controller 7.0 252.0

cisco wireless lan controller 7.5.102.0

cisco wireless lan controller 6.0 202.0

cisco wireless lan controller 8.1.122.0

cisco wireless lan controller 7.3.101.0

cisco wireless lan controller 8.0.0

cisco wireless lan controller 7.4.100

cisco wireless lan controller 8.0.72.140

cisco wireless lan controller 7.4_base

cisco wireless lan controller 7.4.100.60

cisco wireless lan controller 8.0.0.30220.385

cisco wireless lan controller 7.6.1.62

cisco wireless lan controller 7.0 116.0

cisco wireless lan controller 6.0 182.0

cisco wireless lan controller 7.1 91.0

cisco wireless lan controller 7.0 98.218

cisco wireless lan controller 7.5_base

cisco wireless lan controller 8.0.120.0

cisco wireless lan controller 7.3.103.8

cisco wireless lan controller 6.0 196.0

cisco wireless lan controller 7.6.110.0

cisco wireless lan controller 5.2.169.0

cisco wireless lan controller 7.4.121.0

cisco wireless lan controller 8.1.130.0

cisco wireless lan controller 6.0 188.0

cisco wireless lan controller 7.4 1.54

cisco wireless lan controller 7.4.110.0

cisco wireless lan controller 8.0.115.0

cisco wireless lan controller 7.0 250.0

cisco wireless lan controller 7.4 140.0

cisco wireless lan controller 7.4.1.1

cisco wireless lan controller 8.0.100

cisco wireless lan controller 6.0 199.4

cisco wireless lan controller 7.6.120.0

cisco wireless lan controller 8.0.121.0

cisco wireless lan controller 7.3.112

cisco wireless lan controller 7.6.130.0

cisco wireless lan controller 7.3_base

cisco wireless lan controller 7.2_base

cisco wireless lan controller 7.6.100.0

cisco wireless lan controller 7.0_base

cisco wireless lan controller 7.1_base

Vendor Advisories

Cisco: Cisco Wireless LAN Controller 802.11 WME Denial of Service Vulnerability
A vulnerability in 80211 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition The vulnerability is due to incomplete input validation of the 80211 WME packet header An attacker could exploit thi ...

References

CWE-399https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlchttp://www.securityfocus.com/bid/97424http://www.securitytracker.com/id/1038182https://nvd.nist.govhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook