ID de Prueba:	1.3.6.1.4.1.25623.1.0.140471
Categoría:	CISCO
Título:	Cisco Aironet Access Point Platforms Extensible Authentication Protocol Denial of Service Vulnerability
Resumen:	A vulnerability in Extensible Authentication Protocol (EAP) ingress frame;processing for the Cisco Aironet 1560, 2800, and 3800 Series Access Points could allow an unauthenticated, Layer;2 radio frequency (RF) adjacent attacker to cause the Access Point (AP) to reload, resulting in a denial of;service (DoS) condition.
Descripción:	Summary: A vulnerability in Extensible Authentication Protocol (EAP) ingress frame processing for the Cisco Aironet 1560, 2800, and 3800 Series Access Points could allow an unauthenticated, Layer 2 radio frequency (RF) adjacent attacker to cause the Access Point (AP) to reload, resulting in a denial of service (DoS) condition. Vulnerability Insight: The vulnerability is due to insufficient validation of the EAP frame. An attacker could exploit this vulnerability by sending a malformed EAP frame to the targeted device. Vulnerability Impact: A successful exploit could allow the attacker to cause the AP to reload, resulting in a DoS condition while the AP is reloading. It may be necessary to manually power cycle the device in order for it to recover. Solution: See the referenced advisory for a solution. CVSS Score: 6.1 CVSS Vector: AV:A/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-12274 BugTraq ID: 101648 http://www.securityfocus.com/bid/101648 http://www.securitytracker.com/id/1039715
Copyright	Copyright (C) 2017 Greenbone Networks GmbH

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.