Connect with us

Hi, what are you looking for?


Network Security

Cisco Patches Severe Flaws in Wireless LAN Controller

Cisco has released software updates to patch several critical and high severity denial-of-service (DoS) vulnerabilities in the company’s Wireless LAN Controller (WLC) products.

Cisco has released software updates to patch several critical and high severity denial-of-service (DoS) vulnerabilities in the company’s Wireless LAN Controller (WLC) products.

The most serious of the flaws, rated critical, is an issue related to the HTTP URL redirect feature of WLC software. The vulnerability (CVE-2016-1363), caused by the improper handling of HTTP traffic, allows an unauthenticated attacker to remotely trigger a buffer overflow and cause affected devices to enter a DoS condition.

The security hole affects Cisco WLC software versions 7.2, 7.3, 7.4 releases prior to, 7.5, 7.6, and 8.0 releases prior to

Cisco WLC software is also affected by a high severity vulnerability (CVE-2016-1364) in the Bonjour task manager. By sending specially crafted Bonjour traffic to a vulnerable device, a remote attacker can cause it to enter a DoS condition.

The flaw exists in WLC software versions 7.4 prior to, 7.5, 7.6, and 8.0 releases prior to

The last vulnerability related to Cisco WLC (CVE-2016-1362) exists in the web-based management interface of devices running AireOS software. A remote attacker can cause vulnerable devices to reload by accessing a URL that is not supported by the management interface. Cisco WLC devices running AireOS releases 4.1 through, all 7.5 releases, and release are affected.

A DoS vulnerability has also been found in the DHCPv6 relay feature of Cisco Adaptive Security Appliance (ASA) software. A remote, unauthenticated attacker can exploit the flaw to cause a DoS condition by sending specially crafted DHCPv6 packets to affected devices.

Advertisement. Scroll to continue reading.

This high severity vulnerability (CVE-2016-1367) only affects the 9.4.1 release of ASA software. Cisco ASA 5500-X series NGFs, ASA Services Module for Catalyst 6500 series switches and 7600 series routers, and Adaptive Security Virtual Appliances (ASAv) may be affected.

Another serious DoS vulnerability (CVE-2015-6360) has been found in the Secure Real-Time Transport Protocol (SRTP) library (libSRTP). A remote attacker can trigger a DoS condition by sending malicious SRTP packets to the affected device.

This flaw impacts a wide range of Cisco products, including WebEx Meetings Server, Jabber, ASA software, IOS XE software, and over a dozen voice and unified communications devices.

Most of these vulnerabilities were discovered by Cisco’s own employees and there is no evidence that any of them have been exploited for malicious purposes. The libSRTP flaw was discovered last year by Randell Jesup of the Firefox team.

Related: Cisco Patches Command Injection Flaw in ACE Appliance

Related: Cisco Patches Critical, High Severity Flaws in NX-OS

Related: Cisco Patches Serious DoS Flaws in IOS Software

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content

Identity & Access

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...

Cybersecurity Funding

Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50...

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Network Security

Attack surface management is nothing short of a complete methodology for providing effective cybersecurity. It doesn’t seek to protect everything, but concentrates on areas...

Network Security

NSA publishes guidance to help system administrators identify and mitigate cyber risks associated with transitioning to IPv6.


Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Network Security

Our networks have become atomized which, for starters, means they’re highly dispersed. Not just in terms of the infrastructure – legacy, on-premises, hybrid, multi-cloud,...