Wednesday, June 28, 2006

Cisco Security Advisory: Multiple Vulnerabilities in Wireless Control System

Via Cisco Systems.

Cisco Wireless Control System (WCS) contains multiple vulnerabilities which may allow a remote user to:

  • access sensitive configuration information about access points managed by WCS
  • read from and write to arbitrary files on a WCS system
  • log in to a WCS system with a default administrator password
  • execute script code in a WCS user's web browser
  • access directories which may reveal sensitive WCS configuration information

There are workarounds for several, but not all, of these vulnerabilities.

More here.


Post a Comment

<< Home