November 20, 2023
Severity Medium Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]
Rewterz Threat Alert – Blackremote: An undocumented RAT
October 16, 2019Rewterz Threat Alert – Malicious Payloads – Hiding Beneath the WAV
October 17, 2019Rewterz Threat Alert – Blackremote: An undocumented RAT
October 16, 2019Rewterz Threat Alert – Malicious Payloads – Hiding Beneath the WAV
October 17, 2019
Severity
High
Analysis Summary
The vulnerability is due to insufficient access control for certain URLs on an affected device. An attacker could exploit this vulnerability by requesting specific URLs from an affected AP. An exploit could allow the attacker to gain access to the device with elevated privileges. While the attacker would not be granted access to all possible configuration options, it could allow the attacker to view sensitive information and replace some options with values of their choosing, including wireless network configuration. It would also allow the attacker to disable the AP, creating a denial of service (DoS) condition for clients associated with the AP.
Impact
Denial of service
Affected Vendors
Cisco
Affected Products
- Aironet 1540 Series APs
- Aironet 1560 Series APs
- Aironet 1800 Series APs
- Aironet 2800 Series APs
- Aironet 3800 Series APs
- Aironet 4800 APs
Remediation
Please see vendor’s advisory for more details