1. Home
  2. CVE Database
  3. CVE-2007-4012
HIGH · 7.1

CVE-2007-4012

Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller (WLC) software 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service (ARP storm) via a broad...

Vulnerability Description

Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller (WLC) software 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service (ARP storm) via a broadcast ARP packet that "targets the IP address of a known client context", aka CSCsj50374.

CVSS Score

7.1

HIGH

AV:N/AC:M/Au:N/C:N/I:N/A:C
Confidentiality
NONE
Integrity
NONE
Availability
COMPLETE

Affected Products

VendorProductVersions
Cisco4100 Wireless Lan ControllerAll versions
Cisco4400 Wireless Lan ControllerAll versions
CiscoAirespace 4000 Wireless Lan ControllerAll versions
CiscoCatalyst 3750All versions
CiscoCatalyst 6500All versions
CiscoWireless Lan Controller Software3.2

References

FAQ

What is CVE-2007-4012?

CVE-2007-4012 is a vulnerability with a CVSS score of 7.1 (HIGH). Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller (WLC) software 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service (ARP storm) via a broad...

How severe is CVE-2007-4012?

CVE-2007-4012 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-4012?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco 4100 Wireless Lan Controller, Cisco 4400 Wireless Lan Controller, Cisco Airespace 4000 Wireless Lan Controller, Cisco Catalyst 3750, Cisco Catalyst 6500.