CVE-2013-3474 Information

Description

The Web Administrator Interface on Cisco Wireless LAN Controller (WLC) devices allows remote authenticated users to cause a denial of service (device crash) by leveraging membership in the Full Manager managers group Read Only managers group or Lobby Ambassador managers group and sending a request that (1) lacks a parameter value or (2) contains a malformed parameter value aka Bug IDs CSCuh14313 CSCuh14159 CSCuh14368 and CSCuh14436.

Reference

http://osvdb.org/96763 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3474 http://www.securityfocus.com/bid/62084 http://www.securitytracker.com/id/1028970 https://exchange.xforce.ibmcloud.com/vulnerabilities/86811