Cisco Wireless Control System (WCS) contains a SQL injection vulnerability that could allow an authenticated attacker full access to the vulnerable device, including modification of system configuration; create, modify and delete users; or modify the configuration of wireless devices managed by WCS.
This has been fixed in version 6.0.196.0.
More details at:
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091e.shtml
No comments:
Post a Comment