CVE-2009-2976
Summary
| CVE | CVE-2009-2976 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2009-08-27 17:30:00 UTC |
| Updated | 2009-08-28 04:00:00 UTC |
| Description | Cisco Aironet Lightweight Access Point (AP) devices send the contents of certain multicast data frames in cleartext, which allows remote attackers to discover Wireless LAN Controller MAC addresses and IP addresses, and AP configuration details, by sniffing the wireless network. |
Risk And Classification
Problem Types: CWE-310
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Cisco | Aironet Ap1100 | All | All | All | All |
| Hardware | Cisco | Aironet Ap1100 | All | All | All | All |
| Hardware | Cisco | Aironet Ap1200 | All | All | All | All |
| Hardware | Cisco | Aironet Ap1200 | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| AirMagnet - Page Not Found | MISC | www.airmagnet.com | |
| AirMagnet Identifies New Vulnerability and Potential Exploit Associated With Cisco WLAN Access Points | MISC | www.airmagnet.com | |
| SecurityTracker.com Archives - Cisco Access Points Disclose Potentially Sensitive Information and May Let Remote Users Hijack APs | SECTRACK | securitytracker.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.