CVE-2009-1165
First published: Wed Jul 29 2009(Updated: )
Memory leak on the Cisco Wireless LAN Controller (WLC) platform 4.x before 4.2.205.0, 5.1 before 5.1.163.0, and 5.0 and 5.2 before 5.2.178.0, as used in Cisco 1500 Series, 2000 Series, 2100 Series, 4100 Series, 4200 Series, and 4400 Series Wireless Services Modules (WiSM), WLC Modules for Integrated Services Routers, and Catalyst 3750G Integrated Wireless LAN Controllers, allows remote attackers to cause a denial of service (memory consumption and device reload) via SSH management connections, aka Bug ID CSCsw40789.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Catalyst 3750G | ||
| Cisco 1500 Wireless LAN Controller | =4.1 | |
| Cisco 1500 Wireless LAN Controller | =4.1m | |
| Cisco 1500 Wireless LAN Controller | =4.2 | |
| Cisco 1500 Wireless LAN Controller | =5.0 | |
| Cisco 1500 Wireless LAN Controller | =5.1 | |
| Cisco 1500 Wireless LAN Controller | =5.2 | |
| Cisco 2000 Wireless LAN Controller | =4.1 | |
| Cisco 2000 Wireless LAN Controller | =4.1m | |
| Cisco 2000 Wireless LAN Controller | =4.2 | |
| Cisco 2000 Wireless LAN Controller | =5.0 | |
| Cisco 2000 Wireless LAN Controller | =5.1 | |
| Cisco 2000 Wireless LAN Controller | =5.2 | |
| Cisco 2100 Wireless LAN Controller | =4.1 | |
| Cisco 2100 Wireless LAN Controller | =4.1m | |
| Cisco 2100 Wireless LAN Controller | =4.2 | |
| Cisco 2100 Wireless LAN Controller | =5.0 | |
| Cisco 2100 Wireless LAN Controller | =5.1 | |
| Cisco 2100 Wireless LAN Controller | =5.2 | |
| Cisco 4100 Wireless LAN Controller | =4.1 | |
| Cisco 4100 Wireless LAN Controller | =4.1m | |
| Cisco 4100 Wireless LAN Controller | =4.2 | |
| Cisco 4100 Wireless LAN Controller | =5.0 | |
| Cisco 4100 Wireless LAN Controller | =5.1 | |
| Cisco 4100 Wireless LAN Controller | =5.2 | |
| Cisco 4200 Wireless LAN Controller | =4.1 | |
| Cisco 4200 Wireless LAN Controller | =4.1m | |
| Cisco 4200 Wireless LAN Controller | =4.2 | |
| Cisco 4200 Wireless LAN Controller | =5.0 | |
| Cisco 4200 Wireless LAN Controller | =5.1 | |
| Cisco 4200 Wireless LAN Controller | =5.2 | |
| Cisco 4400 Wireless Lan Controller | =4.1 | |
| Cisco 4400 Wireless Lan Controller | =4.1m | |
| Cisco 4400 Wireless Lan Controller | =4.2 | |
| Cisco 4400 Wireless Lan Controller | =5.0 | |
| Cisco 4400 Wireless Lan Controller | =5.1 | |
| Cisco 4400 Wireless Lan Controller | =5.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2009-1165?
CVE-2009-1165 has been classified with a high severity rating due to its memory leak vulnerability.
How do I fix CVE-2009-1165?
To fix CVE-2009-1165, upgrade the Cisco Wireless LAN Controller to a patched version that is 4.2.205.0 or later, 5.1.163.0 or later, or 5.2.178.0 or later.
Which Cisco Wireless LAN Controller versions are affected by CVE-2009-1165?
CVE-2009-1165 affects Cisco Wireless LAN Controller versions prior to 4.2.205.0, 5.1.163.0, 5.2.178.0, and specific earlier releases in those version series.
What impact does CVE-2009-1165 have on Cisco Wireless LAN Controllers?
The impact of CVE-2009-1165 is a potential degradation of performance and stability due to a memory leak that could exhaust available memory.
Are all Cisco Wireless LAN Controllers vulnerable to CVE-2009-1165?
Not all Cisco Wireless LAN Controllers are vulnerable; only those operating on the specific affected versions mentioned in the CVE description are impacted.
- agent/references
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/cisco
- canonical/cisco catalyst 3750g
- canonical/cisco 1500 wireless lan controller
- version/cisco 1500 wireless lan controller/4.1
- version/cisco 1500 wireless lan controller/4.1m
- version/cisco 1500 wireless lan controller/4.2
- version/cisco 1500 wireless lan controller/5.0
- version/cisco 1500 wireless lan controller/5.1
- version/cisco 1500 wireless lan controller/5.2
- canonical/cisco 2000 wireless lan controller
- version/cisco 2000 wireless lan controller/4.1
- version/cisco 2000 wireless lan controller/4.1m
- version/cisco 2000 wireless lan controller/4.2
- version/cisco 2000 wireless lan controller/5.0
- version/cisco 2000 wireless lan controller/5.1
- version/cisco 2000 wireless lan controller/5.2
- canonical/cisco 2100 wireless lan controller
- version/cisco 2100 wireless lan controller/4.1
- version/cisco 2100 wireless lan controller/4.1m
- version/cisco 2100 wireless lan controller/4.2
- version/cisco 2100 wireless lan controller/5.0
- version/cisco 2100 wireless lan controller/5.1
- version/cisco 2100 wireless lan controller/5.2
- canonical/cisco 4100 wireless lan controller
- version/cisco 4100 wireless lan controller/4.1
- version/cisco 4100 wireless lan controller/4.1m
- version/cisco 4100 wireless lan controller/4.2
- version/cisco 4100 wireless lan controller/5.0
- version/cisco 4100 wireless lan controller/5.1
- version/cisco 4100 wireless lan controller/5.2
- canonical/cisco 4200 wireless lan controller
- version/cisco 4200 wireless lan controller/4.1
- version/cisco 4200 wireless lan controller/4.1m
- version/cisco 4200 wireless lan controller/4.2
- version/cisco 4200 wireless lan controller/5.0
- version/cisco 4200 wireless lan controller/5.1
- version/cisco 4200 wireless lan controller/5.2
- canonical/cisco 4400 wireless lan controller
- version/cisco 4400 wireless lan controller/4.1
- version/cisco 4400 wireless lan controller/4.1m
- version/cisco 4400 wireless lan controller/4.2
- version/cisco 4400 wireless lan controller/5.0
- version/cisco 4400 wireless lan controller/5.1
- version/cisco 4400 wireless lan controller/5.2