CVE-2009-2976
First published: Thu Aug 27 2009(Updated: )
Cisco Aironet Lightweight Access Point (AP) devices send the contents of certain multicast data frames in cleartext, which allows remote attackers to discover Wireless LAN Controller MAC addresses and IP addresses, and AP configuration details, by sniffing the wireless network.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Aironet AP1100 | ||
| Cisco Aironet AP1200 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2009-2976?
CVE-2009-2976 is considered a medium severity vulnerability as it allows unauthorized disclosure of sensitive network information.
How do I fix CVE-2009-2976?
To fix CVE-2009-2976, update the firmware of affected Cisco Aironet Lightweight Access Point devices to the latest version provided by Cisco.
What devices are affected by CVE-2009-2976?
CVE-2009-2976 affects Cisco Aironet AP1100 and AP1200 series access points.
What type of attacks can be executed due to CVE-2009-2976?
Remote attackers can exploit CVE-2009-2976 to sniff multicast data frames and discover Wireless LAN Controller MAC addresses and IP configurations.
Is CVE-2009-2976 a local or remote vulnerability?
CVE-2009-2976 is classified as a remote vulnerability, as it can be exploited by attackers from outside the network.
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/references
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/cisco
- canonical/cisco aironet ap1100
- canonical/cisco aironet ap1200