CVE - CVE-2007-4011

CVE-ID
CVE-2007-4011	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller (WLC) software before 3.2 20070727, 4.0 before 20070727, and 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service (traffic amplification or ARP storm) via a crafted unicast ARP request that (1) has a destination MAC address unknown to the Layer-2 infrastructure, aka CSCsj69233; or (2) occurs during Layer-3 roaming across IP subnets, aka CSCsj70841.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:25043 URL:http://www.securityfocus.com/bid/25043 CISCO:20070724 Wireless ARP Storm Vulnerability URL:http://www.cisco.com/en/US/products/products_security_advisory09186a008088ab28.shtml SECTRACK:1018444 URL:http://www.securitytracker.com/id?1018444 SECUNIA:26161 URL:http://secunia.com/advisories/26161 VUPEN:ADV-2007-2636 URL:http://www.vupen.com/english/advisories/2007/2636 XF:cisco-wlc-arp-dos(35576) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/35576
Assigning CNA
MITRE Corporation
Date Record Created
20070725	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20070725)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is a record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)