From: SecuriTeam <support@securiteam.com.>
To: [email protected]
Date: 20 Apr 2006 15:16:12 +0200
Subject: [NEWS] Cisco WLSE Appliance Multiple Vulnerabilities (XSS, Local Privilege Escalation)
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-Id: <20060420132537.1B8A15820@mail.tyumen.ru.>
X-Virus-Scanned: antivirus-gw at tyumen.ru
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
The SecuriTeam alerts list - Free, Accurate, Independent.
Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html
- - - - - - - - -
Cisco WLSE Appliance Multiple Vulnerabilities (XSS, Local Privilege
Escalation)
------------------------------------------------------------------------
SUMMARY
"CiscoWorks WLSE is a centralized, systems-level application for managing
and controlling an entire autonomous Cisco WLAN infrastructure."
Improper handling of user input allows attackers to cause XSS and to
perform a local privileges escalation attack with CiscoWorks Wireless LAN
Solution Engine.
DETAILS
Vulnerable Systems:
* CiscoWorks Wireless LAN Solution Engine software version 2.12 and prior
Immune Systems:
* CiscoWorks Wireless LAN Solution Engine software version 2.13
Cross site scripting:
By exploiting this vulnerability, an attacker may obtain the session
cookie information and further use this information to gain administrative
privileges on the system.
Local privilege escalation:
By exploiting this vulnerability an attacker who already has authenticated
access to the command line interface may inject a command to obtain a
shell account on the underlying operating system.
ADDITIONAL INFORMATION
The information has been provided by <mailto:psirt@cisco.com.> Cisco
Security.
The original article can be found at:
<http://www.cisco.com/warp/public/707/cisco-sa-20060419-wlse.shtml>;
http://www.cisco.com/warp/public/707/cisco-sa-20060419-wlse.shtml
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: [email protected]
In order to subscribe to the mailing list, simply forward this email to: [email protected]
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
