CVE-2014-0705

Published: Mar 6, 2014Modified: May 6, 2026

7.1

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Exploitability: 8.6 / Impact: 6.9

Source: NVD

Description

The multicast listener discovery (MLD) service on Cisco Wireless LAN Controller (WLC) devices 7.2, 7.3, 7.4 before 7.4.121.0, and 7.5, when MLDv2 Snooping is enabled, allows remote attackers to cause a denial of service (device restart) via a malformed IPv6 MLDv2 packet, aka Bug ID CSCuh74233.

Affected (9)

Products: Cisco: Wireless Lan Controller Software, Wireless Lan Controller

Cisco

2 products

Wireless Lan Controller Software

Wireless Lan Controller

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Cisco Wireless Lan Controller Software	Version 7.2.103.0
Cisco Wireless Lan Controller Software	Version 7.2.110.0
Cisco Wireless Lan Controller Software	Version 7.2
Cisco Wireless Lan Controller Software	Version 7.3.101.0
Cisco Wireless Lan Controller Software	Version 7.3
Cisco Wireless Lan Controller Software	Version 7.4.100.0
Cisco Wireless Lan Controller Software	Version 7.4.100.60
Cisco Wireless Lan Controller Software	Version 7.5
Cisco Wireless Lan Controller	All versions

Related CWEs

CWE-399

References (2)

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140305-wlc

Source: psirt@cisco.com

Vendor Advisory

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140305-wlc

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.