CyberSec.Space Logo
Back to CVE Browser

CVE-2016-1363

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0490%
EPSS Percentile38.41th
PublishedApr 21, 2016
Last ModifiedMay 6, 2026

Vulnerability Description

Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617.

Affected Platforms (CPE)

πŸ’»
Cisco

Wireless Lan Controller Software

>= 7.2.0 and < 7.4.140.0
πŸ’»
Cisco

Wireless Lan Controller Software

>= 7.5.0 and < 8.0.115.0

References & Advisories

πŸ”— http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd
πŸ”— http://www.securitytracker.com/id/1035633
πŸ”— http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd
πŸ”— http://www.securitytracker.com/id/1035633

Related Vulnerabilities

CVE-2014-070310.0

Cisco Wireless LAN Controller (WLC) devices 7.4 before 7.4.110.0 distribute Aironet IOS software with a race condition in the stat...

CVE-2015-63149.8

Cisco Wireless LAN Controller (WLC) devices with software 7.6.x, 8.0 before 8.0.121.0, and 8.1 before 8.1.131.0 allow remote attac...

CVE-2012-03719.3

Cisco Wireless LAN Controller (WLC) devices with software 4.x, 5.x, 6.0, and 7.0 before 7.0.220.4, when CPU-based ACLs are enabled...

CVE-2012-09859.3

Multiple buffer overflows in the Wireless Manager ActiveX control 4.0.0.0 in WifiMan.dll in Sony VAIO PC Wireless LAN Wizard 1.0; ...