CVE-2016-9194:A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) could allow an unauthenticated, adjacent attacker to cause a denial of service by sending malformed WME frames. Fixed in versions 8.0.140.0, 8.2.130.0, and 8.3.111.0 (CVE-2016-9194).

splash
Back

Description Preview

CVE-2016-9194 describes a DoS vulnerability in Cisco WLC where incomplete input validation of the 802.11 WME packet header allows an unauthenticated, adjacent attacker to trigger a reload of the WLC by sending malformed 802.11 WME frames. This could cause the targeted device to unexpectedly reload, disrupting wireless services. Cisco identified fixed releases as 8.0.140.0, 8.2.130.0, and 8.3.111.0, and references Cisco Bug CSCva86353. The issue stems from processing of WME action frames, and exploitation does not require authentication from the attacker, only proximity to the affected WLC.

Overview

This CVE covers a denial of service condition in Cisco Wireless LAN Controller due to improper input validation of 802.11 WME frames. An unauthenticated, adjacent attacker can exploit malformed WME frames to cause the WLC to reload, potentially taking wireless services offline. Cisco has published fixed firmware versions (8.0.140.0, 8.2.130.0, 8.3.111.0) and a security advisory detailing the vulnerability and remediation steps.

Remediation

  • Upgrade affected Cisco WLC devices to one of the fixed releases: 8.0.140.0, 8.2.130.0, or 8.3.111.0.
  • Apply the Cisco security advisory: Cisco Security Advisory cisco-sa-20170405-wlc.
  • Schedule the upgrade in a maintenance window, ensuring backups of configuration and current deployment state.
  • Verify upgrade success and perform post-upgrade testing to confirm normal WLC operation and service continuity.
  • If upgrade is not immediately possible, implement compensating controls such as network segmentation or limiting proximity exposure to reduce attacker access, and monitor for DoS indicators and WLC reloads while planning an upgrade.

References

  • http://www.securityfocus.com/bid/97424
  • http://www.securitytracker.com/id/1038182
  • https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc

Industry ExposureMost to least
This section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.

  1. Retail Trade: Low
    Retail Trade
  2. Manufacturing: Low
    Manufacturing
  3. Public Administration: Low
    Public Administration
  4. Transportation & Warehousing: Low
    Transportation & Warehousing
  5. Accommodation & Food Services: Low
    Accommodation & Food Services
  6. Administrative, Support, Waste Management & Remediation Services: Low
    Administrative, Support, Waste Management & Remediation Services
  7. Agriculture, Forestry Fishing & Hunting: Low
    Agriculture, Forestry Fishing & Hunting
  8. Arts, Entertainment & Recreation: Low
    Arts, Entertainment & Recreation
  9. Construction: Low
    Construction
  10. Educational Services: Low
    Educational Services
  11. Finance and Insurance: Low
    Finance and Insurance
  12. Health Care & Social Assistance: Low
    Health Care & Social Assistance
  13. Information: Low
    Information
  14. Management of Companies & Enterprises: Low
    Management of Companies & Enterprises
  15. Mining: Low
    Mining
  16. Other Services (except Public Administration): Low
    Other Services (except Public Administration)
  17. Professional, Scientific, & Technical Services: Low
    Professional, Scientific, & Technical Services
  18. Real Estate Rental & Leasing: Low
    Real Estate Rental & Leasing
  19. Utilities: Low
    Utilities
  20. Wholesale Trade: Low
    Wholesale Trade

Focus on What Matters

  1. See Everything.
  2. Identify True Risk.
  3. Proactively Mitigate Threats.

Let's talk!

background