Arbitrary Code Execution Vulnerability in Cisco Wireless LAN Controller (WLC) Devices (Bug ID CSCuc15636)

Arbitrary Code Execution Vulnerability in Cisco Wireless LAN Controller (WLC) Devices (Bug ID CSCuc15636)

CVE-2013-1104 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

The HTTP Profiling functionality on Cisco Wireless LAN Controller (WLC) devices with software 7.3.101.0 allows remote authenticated users to execute arbitrary code via a crafted HTTP User-Agent header, aka Bug ID CSCuc15636.

Learn more about our Cis Benchmark Audit For Cisco.