Test ID:	1.3.6.1.4.1.25623.1.0.140472
Category:	CISCO
Title:	Cisco Aironet Access Points MAC Authentication Bypass Vulnerability
Summary:	A vulnerability in the implementation of Protected Extensible Authentication;Protocol (PEAP) functionality for standalone configurations of Cisco Aironet 1800, 2800, and 3800 Series Access;Points could allow an unauthenticated, adjacent attacker to bypass authentication and connect to an affected;device.
Description:	Summary: A vulnerability in the implementation of Protected Extensible Authentication Protocol (PEAP) functionality for standalone configurations of Cisco Aironet 1800, 2800, and 3800 Series Access Points could allow an unauthenticated, adjacent attacker to bypass authentication and connect to an affected device. Vulnerability Insight: The vulnerability exists because the affected device uses an incorrect default configuration setting of fail open when running in standalone mode. An attacker could exploit this vulnerability by attempting to connect to an affected device. Vulnerability Impact: A successful exploit could allow the attacker to bypass authentication and connect to the affected device. Solution: See the referenced advisory for a solution. CVSS Score: 5.4 CVSS Vector: AV:A/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-12281 BugTraq ID: 101649 http://www.securityfocus.com/bid/101649 http://www.securitytracker.com/id/1039725
Copyright	Copyright (C) 2017 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.