CVE-2009-1167 (GCVE-0-2009-1167)

Vulnerability from cvelistv5 – Published: 2009-07-29 17:00 – Updated: 2024-08-07 05:04
VLAI
Summary
Unspecified vulnerability on the Cisco Wireless LAN Controller (WLC) platform 4.x before 4.2.205.0 and 5.x before 5.2.191.0, as used in Cisco 1500 Series, 2000 Series, 2100 Series, 4100 Series, 4200 Series, and 4400 Series Wireless Services Modules (WiSM), WLC Modules for Integrated Services Routers, and Catalyst 3750G Integrated Wireless LAN Controllers, allows remote attackers to modify the configuration via a crafted (1) HTTP or (2) HTTPS request, aka Bug ID CSCsy44672.
Severity
No CVSS data available.
CWE
  • n/a
Assigner
References
URL Tags
http://www.securitytracker.com/id?1022606 vdb-entryx_refsource_SECTRACK
http://www.cisco.com/en/US/products/products_secu… vendor-advisoryx_refsource_CISCO
http://www.vupen.com/english/advisories/2009/2021 vdb-entryx_refsource_VUPEN
Date Public
2009-07-27 00:00
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T05:04:48.910Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1022606",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1022606"
          },
          {
            "name": "20090727 Multiple Vulnerabilities in Cisco Wireless LAN Controllers",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080adb3d7.shtml"
          },
          {
            "name": "ADV-2009-2021",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2009/2021"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2009-07-27T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Unspecified vulnerability on the Cisco Wireless LAN Controller (WLC) platform 4.x before 4.2.205.0 and 5.x before 5.2.191.0, as used in Cisco 1500 Series, 2000 Series, 2100 Series, 4100 Series, 4200 Series, and 4400 Series Wireless Services Modules (WiSM), WLC Modules for Integrated Services Routers, and Catalyst 3750G Integrated Wireless LAN Controllers, allows remote attackers to modify the configuration via a crafted (1) HTTP or (2) HTTPS request, aka Bug ID CSCsy44672."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2009-08-07T09:00:00.000Z",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "1022606",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1022606"
        },
        {
          "name": "20090727 Multiple Vulnerabilities in Cisco Wireless LAN Controllers",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080adb3d7.shtml"
        },
        {
          "name": "ADV-2009-2021",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2009/2021"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2009-1167",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Unspecified vulnerability on the Cisco Wireless LAN Controller (WLC) platform 4.x before 4.2.205.0 and 5.x before 5.2.191.0, as used in Cisco 1500 Series, 2000 Series, 2100 Series, 4100 Series, 4200 Series, and 4400 Series Wireless Services Modules (WiSM), WLC Modules for Integrated Services Routers, and Catalyst 3750G Integrated Wireless LAN Controllers, allows remote attackers to modify the configuration via a crafted (1) HTTP or (2) HTTPS request, aka Bug ID CSCsy44672."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1022606",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1022606"
            },
            {
              "name": "20090727 Multiple Vulnerabilities in Cisco Wireless LAN Controllers",
              "refsource": "CISCO",
              "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080adb3d7.shtml"
            },
            {
              "name": "ADV-2009-2021",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2009/2021"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2009-1167",
    "datePublished": "2009-07-29T17:00:00.000Z",
    "dateReserved": "2009-03-26T00:00:00.000Z",
    "dateUpdated": "2024-08-07T05:04:48.910Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2009-1167",
      "date": "2026-07-01",
      "epss": "0.02146",
      "percentile": "0.79826"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2009-1167\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2009-07-29T17:30:01.110\",\"lastModified\":\"2026-04-23T00:35:47.467\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability on the Cisco Wireless LAN Controller (WLC) platform 4.x before 4.2.205.0 and 5.x before 5.2.191.0, as used in Cisco 1500 Series, 2000 Series, 2100 Series, 4100 Series, 4200 Series, and 4400 Series Wireless Services Modules (WiSM), WLC Modules for Integrated Services Routers, and Catalyst 3750G Integrated Wireless LAN Controllers, allows remote attackers to modify the configuration via a crafted (1) HTTP or (2) HTTPS request, aka Bug ID CSCsy44672.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad sin especificar en la plataforma Cisco Wireless LAN Controller (WLC) v4.x anterior a v4.2.205.0 y v5.x anterior a v5.2.191.0, usado en  Cisco 1500 Series, 2000 Series, 2100 Series, 4100 Series, 4200 Series, y 4400 Series Wireless Services Modules (WiSM), WLC Modules para Integrated Services Routers, y Catalyst 3750G Integrated Wireless LAN Controllers, permite a atacantes remotos modificar a configuraci\u00f3n a trav\u00e9s de peticiones (1) HTTP o (2) HTTPS, tambi\u00e9n conocido como Bug ID CSCsy44672.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":10.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:catalyst_3750g:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8EAB8765-659C-4A1D-ACA8-3323FA64CCEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_1500_wireless_lan_controller:4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C75D0787-769B-4686-8DBE-92D2DA52AAAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_1500_wireless_lan_controller:4.1m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32C15F81-46E3-440F-A36F-DD5904F745F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_1500_wireless_lan_controller:4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C57E75DB-03F4-4A38-92BA-FAC3F49FB6B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_1500_wireless_lan_controller:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D7754EC-1BA6-4BB3-A339-8977EF747FA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_1500_wireless_lan_controller:5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F458BB81-18CB-45C9-80D6-099E38ECB81F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_1500_wireless_lan_controller:5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9294DEC-0242-4B50-B93F-F46E4B14106A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_2000_wireless_lan_controller:4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66F1A494-06A0-46F9-8443-886EE590628F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_2000_wireless_lan_controller:4.1m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C200E78-FF91-4C3A-920C-BD9EECC4BD36\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_2000_wireless_lan_controller:4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6FE4ECC2-918B-4059-80F3-DA4E1FEB7D4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_2000_wireless_lan_controller:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3CAF4094-65DD-4A0C-A404-818742666A71\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_2000_wireless_lan_controller:5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FEB0F0B7-22BB-43F7-ADF7-E72709196E6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_2000_wireless_lan_controller:5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"39552A59-00AE-47C9-8FDA-EB95F0914CA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_2100_wireless_lan_controller:4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"404ACEE8-F223-4324-B68F-03A88661E2CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_2100_wireless_lan_controller:4.1m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E7412AF-4521-4E06-84C1-719591288EEF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_2100_wireless_lan_controller:4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6451FA3E-5C1C-4FF4-B139-B06B3333086A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_2100_wireless_lan_controller:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2847FEF3-65B8-4922-BDD8-AF6F8E8A34DC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_2100_wireless_lan_controller:5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D553C27-CC79-434F-95CB-CEB54E23E33C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_2100_wireless_lan_controller:5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB94E899-46D8-401D-8712-03F461A705EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4100_wireless_lan_controller:4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"534311A6-20CE-4DD7-833F-8874BBF34205\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4100_wireless_lan_controller:4.1m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB6692EA-EB32-4089-863E-1B107D50CFF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4100_wireless_lan_controller:4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D56C504-10BE-431A-B22C-309A9EE7CD0A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4100_wireless_lan_controller:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2B03F83-6996-4BDF-A599-21FAA713987E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4100_wireless_lan_controller:5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4F985DA-38C5-49DC-922A-9A52DCE89F08\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4100_wireless_lan_controller:5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"212A3CD0-892B-4762-B88C-3080B854F69E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4200_wireless_lan_controller:4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1B9A187-7240-443F-9B66-AE9AA1E6AEAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4200_wireless_lan_controller:4.1m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"513EFDE4-C892-4DE3-AB1A-0C8E4F71DC6B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4200_wireless_lan_controller:4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B37CAD2-B07F-47B8-92C5-9668878266A7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4200_wireless_lan_controller:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3C517DD-ED02-4F31-86E9-93AEBC16E7CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4200_wireless_lan_controller:5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"954B0579-2F6E-43BA-9032-B230EF9F13FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4200_wireless_lan_controller:5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2ECD9FB2-203F-4395-9399-8FE52ED9C059\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4400_wireless_lan_controller:4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D24DE9F5-C14C-4BA2-AEE4-B1E3D7D4F908\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4400_wireless_lan_controller:4.1m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5200DC76-AB38-4A75-BD2E-2D9048A66D07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4400_wireless_lan_controller:4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A88DFEA1-E796-4F78-B58A-3D5AA7CCFE6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4400_wireless_lan_controller:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A48FEAF2-C03D-49DB-A962-582A20E1AB67\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4400_wireless_lan_controller:5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"22E3EF41-DD13-4A62-91D1-D5AFAC9ACDE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:cisco_4400_wireless_lan_controller:5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE6D5623-6DE5-4C48-A0BA-509365EE2E6F\"}]}]}],\"references\":[{\"url\":\"http://www.cisco.com/en/US/products/products_security_advisory09186a0080adb3d7.shtml\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securitytracker.com/id?1022606\",\"source\":\"psirt@cisco.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2009/2021\",\"source\":\"psirt@cisco.com\"},{\"url\":\"http://www.cisco.com/en/US/products/products_security_advisory09186a0080adb3d7.shtml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securitytracker.com/id?1022606\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2009/2021\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…