A vulnerability in 802.11 ingress connection authentication handling for the Cisco Mobility Express 2800 and 3800 Access Points (APs) could allow an unauthenticated, adjacent attacker to cause authentication to fail.

The vulnerability is due to improper error handling for 802.11 authentication requests that do not complete.

An attacker could exploit this vulnerability by sending a crafted 802.11 frame to the targeted device.

An exploit could allow the attacker to impact the availability of the device due to authentication failures.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170118-cme2
A vulnerability in 802.11 ingress connection authentication handling for the Cisco Mobility Express 2800 and 3800 Access Points (APs) could allow an unauthenticated, adjacent attacker to cause authentication to fail.

The vulnerability is due to improper error handling for 802.11 authentication requests that do not complete.

An attacker could exploit this vulnerability by sending a crafted 802.11 frame to the targeted device.

An exploit could allow the attacker to impact the availability of the device due to authentication failures.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170118-cme2

Security Impact Rating: Medium

CVE: CVE-2016-9221

Leave a Reply