Cisco Wireless LAN Controller IPv6 UDP Denial of Service Vulnerability: CVE-2016-9219

by CIRT Team

Description: The vulnerability is due to incomplete IPv6 UDP header validation. An attacker could exploit this vulnerability by sending a crafted IPv6 UDP packet to a specific port on the targeted device. An exploit could allow the attacker to impact the availability of the device as it could unexpectedly reload.

Impact:  Attackers can exploit this issue to cause denial-of-service conditions.

Mitigation: Cisco has released software updates that addresses this vulnerability.

Reference URL’s:

• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc2
• http://www.securityfocus.com/bid/97423/discuss

CIRT Team