Test ID:	1.3.6.1.4.1.25623.1.0.105740
Category:	CISCO
Title:	Cisco Wireless LAN Controller HTTP Parsing Denial of Service Vulnerability
Summary:	A vulnerability in the HTTP URL redirect feature of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to cause a buffer overflow condition on an affected device, resulting in a denial of service (DoS) condition.
Description:	Summary: A vulnerability in the HTTP URL redirect feature of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to cause a buffer overflow condition on an affected device, resulting in a denial of service (DoS) condition. Vulnerability Impact: An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to cause a buffer overflow condition on the device, which could allow the attacker to cause the device to reload, resulting in a DoS condition, or execute arbitrary code on the device. Affected Software/OS: All 7.2 releases, all 7.3 releases, all 7.4 releases prior to 7.4.140.0(MD), all 7.5 releases, all 7.6 releases and all 8.0 releases prior to 8.0.115.0(ED). Solution: Updates are available. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-1363 Cisco Security Advisory: 20160420 Cisco Wireless LAN Controller HTTP Parsing Denial of Service Vulnerability http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd http://www.securitytracker.com/id/1035633
Copyright	Copyright (C) 2016 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.