CVE-2014-0701

Cisco Wireless LAN Controller (WLC) devices 7.0 before 7.0.250.0, 7.2, 7.3, and 7.4 before 7.4.110.0 do not properly deallocate memory, which allows remote attackers to cause a denial of service (reboot) by sending WebAuth login requests at a high rate, aka Bug ID CSCuf52361.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:C
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 56%
VendorProductVersion
ciscowireless_lan_controller_software
7.0
ciscowireless_lan_controller_software
7.0.220.0
ciscowireless_lan_controller_software
7.0.235.0
ciscowireless_lan_controller_software
7.2
ciscowireless_lan_controller_software
7.2.103.0
ciscowireless_lan_controller_software
7.2.110.0
ciscowireless_lan_controller_software
7.3
ciscowireless_lan_controller_software
7.3.101.0
ciscowireless_lan_controller_software
7.4.100.0
ciscowireless_lan_controller_software
7.4.100.60
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140305-wlc
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140305-wlc