1. Home
  2. CVE Database
  3. CVE-2007-2038
MEDIUM · 6.1

CVE-2007-2038

The Network Processing Unit (NPU) in the Cisco Wireless LAN Controller (WLC) before 3.2.193.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial o...

Vulnerability Description

The Network Processing Unit (NPU) in the Cisco Wireless LAN Controller (WLC) before 3.2.193.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service (loss of packet forwarding) via (1) crafted SNAP packets, (2) malformed 802.11 traffic, or (3) packets with certain header length values, aka Bug ID CSCsg36361.

CVSS Score

6.1

MEDIUM

AV:A/AC:L/Au:N/C:N/I:N/A:C
Confidentiality
NONE
Integrity
NONE
Availability
COMPLETE

Affected Products

VendorProductVersions
Cisco2000 Wireless Lan ControllerAll versions
Cisco2100 Wireless Lan ControllerAll versions
Cisco4100 Wireless Lan ControllerAll versions
Cisco4400 Wireless Lan ControllerAll versions

References

FAQ

What is CVE-2007-2038?

CVE-2007-2038 is a vulnerability with a CVSS score of 6.1 (MEDIUM). The Network Processing Unit (NPU) in the Cisco Wireless LAN Controller (WLC) before 3.2.193.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial o...

How severe is CVE-2007-2038?

CVE-2007-2038 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-2038?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco 2000 Wireless Lan Controller, Cisco 2100 Wireless Lan Controller, Cisco 4100 Wireless Lan Controller, Cisco 4400 Wireless Lan Controller.