Test ID:	1.3.6.1.4.1.25623.1.0.140471
Category:	CISCO
Title:	Cisco Aironet Access Point Platforms Extensible Authentication Protocol Denial of Service Vulnerability
Summary:	A vulnerability in Extensible Authentication Protocol (EAP) ingress frame;processing for the Cisco Aironet 1560, 2800, and 3800 Series Access Points could allow an unauthenticated, Layer;2 radio frequency (RF) adjacent attacker to cause the Access Point (AP) to reload, resulting in a denial of;service (DoS) condition.
Description:	Summary: A vulnerability in Extensible Authentication Protocol (EAP) ingress frame processing for the Cisco Aironet 1560, 2800, and 3800 Series Access Points could allow an unauthenticated, Layer 2 radio frequency (RF) adjacent attacker to cause the Access Point (AP) to reload, resulting in a denial of service (DoS) condition. Vulnerability Insight: The vulnerability is due to insufficient validation of the EAP frame. An attacker could exploit this vulnerability by sending a malformed EAP frame to the targeted device. Vulnerability Impact: A successful exploit could allow the attacker to cause the AP to reload, resulting in a DoS condition while the AP is reloading. It may be necessary to manually power cycle the device in order for it to recover. Solution: See the referenced advisory for a solution. CVSS Score: 6.1 CVSS Vector: AV:A/AC:L/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-12274 BugTraq ID: 101648 http://www.securityfocus.com/bid/101648 http://www.securitytracker.com/id/1039715
Copyright	Copyright (C) 2017 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.