April 13, 2007 7:37 AM PDT
Cisco patches Wi-Fi vulnerabilities
- Related Stories
Apple closes Wi-Fi holeJanuary 25, 2007
Apple Mac OS X patch plugs 31 vulnerabilitiesNovember 28, 2006
Security adviser: Cyberthreats keep growingNovember 22, 2006
Broadcom flaw could allow Wi-Fi hijacksNovember 13, 2006
New Apple patch plugs Wi-Fi hijack flawsSeptember 21, 2006
In an advisory published Thursday, Cisco warned that its Wireless Control System, or WCS, contains multiple vulnerabilities that can result in information disclosure, privilege escalation and unauthorized access to the network.
The WCS works in conjunction with Cisco Aironet lightweight access points, Cisco wireless LAN controllers and the Cisco Wireless Location Appliance by providing tools for planning and design, system configuration, location tracking, security monitoring and wireless LAN management.
Versions affected are those prior to 22.214.171.124.
In a second advisory, Cisco alerted IT managers to multiple vulnerabilities in its wireless LAN controller, routers and access points that could leave systems open to denial-of-service attacks, information disclosure and access control list changes, and could allow an attacker to gain full administrative access.
Further details of affected versions and equipment can be found in the advisory.
Cisco urged customers owning the affected products to apply the patches, which can be found on its Web site via hyperlinks in the advisories.
Tom Espiner of ZDNet UK reported from London.