What is the severity of CVE-2010-3033?

CVE-2010-3033 is considered a high severity vulnerability due to its potential to allow unauthorized modification of the Cisco Wireless LAN Controller configuration.

How do I fix CVE-2010-3033?

To address CVE-2010-3033, upgrade your Cisco Wireless LAN Controller software to a version that is not affected, specifically versions after 6.0.

Which Cisco Wireless LAN Controller versions are vulnerable to CVE-2010-3033?

Versions of Cisco Wireless LAN Controller software from 4.2 to 6.0 are affected by CVE-2010-3033.

Can CVE-2010-3033 lead to administrative privileges?

Yes, CVE-2010-3033 can potentially enable an attacker to obtain administrative privileges on the device.

What kinds of users are affected by CVE-2010-3033?

Remote authenticated users can exploit CVE-2010-3033 to bypass access restrictions on the Cisco Wireless LAN Controller.

Vulnerability/
CVE-2010-3033

critical

CWE

264

10/9/2010

13/9/2010

CVE-2010-3033

First published: Fri Sep 10 2010(Updated: )

Cisco Wireless LAN Controller (WLC) software, possibly 4.2 through 6.0, allows remote authenticated users to bypass intended access restrictions and modify the configuration, and possibly obtain administrative privileges, via unspecified vectors, a different vulnerability than CVE-2010-2842 and CVE-2010-2843.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Wireless LAN Controller software	=4.2
Cisco Wireless LAN Controller software	=6.0.182.0
Cisco Wireless LAN Controller software	=4.2.176.0
Cisco Wireless LAN Controller software	=4.2.174.0
Cisco Wireless LAN Controller software	=5.0.148.0
Cisco Wireless LAN Controller software	=4.2.182.0
Cisco Wireless LAN Controller software	=4.2.112.0
Cisco Wireless LAN Controller software	=4.2.99.0
Cisco Wireless LAN Controller software	=4.2.130.0
Cisco Wireless LAN Controller software	=5.1.160.0
Cisco Wireless LAN Controller software	=5.2
Cisco Wireless LAN Controller software	=4.2.117.0
Cisco Wireless LAN Controller software	=5.0.148.2
Cisco Wireless LAN Controller software	=6.0
Cisco Wireless LAN Controller software	=4.2.61.0
Cisco Wireless LAN Controller software	=5.2.157.0
Cisco Wireless LAN Controller software	=4.2.173.0
Cisco Wireless LAN Controller software	=5.1
Cisco Wireless LAN Controller software	=5.2.169.0
Cisco Wireless LAN Controller software	=5.1.152.0
Cisco Wireless LAN Controller software	=5.1.151.0

Remedy

http://tools.cisco.com/security/center/viewAlert.x?alertId=21290

Remedy

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-3033?
CVE-2010-3033 is considered a high severity vulnerability due to its potential to allow unauthorized modification of the Cisco Wireless LAN Controller configuration.
How do I fix CVE-2010-3033?
To address CVE-2010-3033, upgrade your Cisco Wireless LAN Controller software to a version that is not affected, specifically versions after 6.0.
Which Cisco Wireless LAN Controller versions are vulnerable to CVE-2010-3033?
Versions of Cisco Wireless LAN Controller software from 4.2 to 6.0 are affected by CVE-2010-3033.
Can CVE-2010-3033 lead to administrative privileges?
Yes, CVE-2010-3033 can potentially enable an attacker to obtain administrative privileges on the device.
What kinds of users are affected by CVE-2010-3033?
Remote authenticated users can exploit CVE-2010-3033 to bypass access restrictions on the Cisco Wireless LAN Controller.

agent/references
agent/type
agent/last-modified-date
agent/remedy
agent/first-publish-date
agent/severity
agent/weakness
agent/author
agent/softwarecombine
agent/tags
agent/description
agent/event
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/cisco
canonical/cisco wireless lan controller software
version/cisco wireless lan controller software/4.2
version/cisco wireless lan controller software/6.0.182.0
version/cisco wireless lan controller software/4.2.176.0
version/cisco wireless lan controller software/4.2.174.0
version/cisco wireless lan controller software/5.0.148.0
version/cisco wireless lan controller software/4.2.182.0
version/cisco wireless lan controller software/4.2.112.0
version/cisco wireless lan controller software/4.2.99.0
version/cisco wireless lan controller software/4.2.130.0
version/cisco wireless lan controller software/5.1.160.0
version/cisco wireless lan controller software/5.2
version/cisco wireless lan controller software/4.2.117.0
version/cisco wireless lan controller software/5.0.148.2
version/cisco wireless lan controller software/6.0
version/cisco wireless lan controller software/4.2.61.0
version/cisco wireless lan controller software/5.2.157.0
version/cisco wireless lan controller software/4.2.173.0
version/cisco wireless lan controller software/5.1
version/cisco wireless lan controller software/5.2.169.0
version/cisco wireless lan controller software/5.1.152.0
version/cisco wireless lan controller software/5.1.151.0

CVE-2010-3033

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-3033?

How do I fix CVE-2010-3033?

Which Cisco Wireless LAN Controller versions are vulnerable to CVE-2010-3033?

Can CVE-2010-3033 lead to administrative privileges?

What kinds of users are affected by CVE-2010-3033?

Company

Resources

Contact