cisco-sa-20160817-aap

Cisco Aironet 1800, 2800, and 3800 Series Access Point Platforms AMPDU Denial of Service Vulnerability

cisco-sa-20160817-aap · Medium · Published 9 years ago · Updated 9 years ago

A vulnerability in the Aggregated MAC Protocol Data Unit (AMPDU) implementation in Cisco Access Point (AP) platforms could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the AMPDU packet header. An attacker could exploit this vulnerability by sending a crafted AMPDU packet to the targeted device. An exploit could allow the attacker to cause the device to reload unexpectedly. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160817-aap

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address this vulnerability.

CVEs	CVE-2016-6361
Cisco Bug IDs	CSCuz56288
CVSS Score	Base 6.1 Base 6.1 AV:A/AC:L/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C
Product Names From Source	Cisco Aironet Access Point Software

Related Products

Product	CVE	Evidence
Cisco RV Series Routers	CVE-2016-6361	Cisco OpenVuln
Cisco Nexus Dashboard	CVE-2016-6361	Cisco OpenVuln
Cisco Meraki MS Series Switches	CVE-2016-6361	Cisco OpenVuln
Cisco Aironet Access Point Software	CVE-2016-6361	Cisco OpenVuln

Vulnslist

find the latest Cisco vulnerabilities

Cisco Aironet 1800, 2800, and 3800 Series Access Point Platforms AMPDU Denial of Service Vulnerability

Workarounds

Related Products