CVE-2013-1104

The HTTP Profiling functionality on Cisco Wireless LAN Controller (WLC) devices with software 7.3.101.0 allows remote authenticated users to execute arbitrary code via a crafted HTTP User-Agent header, aka Bug ID CSCuc15636.

🔗 References (12)

• psirt@ciscohttp://osvdb.org/89533
• psirt@ciscohttp://secunia.com/advisories/51965
• psirt@ciscohttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130123-wlc
• psirt@ciscohttp://www.securityfocus.com/bid/57524
• psirt@ciscohttp://www.securitytracker.com/id/1028027
• psirt@ciscohttps://exchange.xforce.ibmcloud.com/vulnerabilities/81489
• af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/89533
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/51965
• af854a3a-2127-422b-91ae-364da2661108http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130123-wlc
• af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/57524
• af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id/1028027
• af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/81489