Cisco Cisco Aironet 1200 Access Point 릴리즈 노트

Cisco has made free software available to address this vulnerability for affected customers. There 
are no workarounds available to mitigate the effects of the vulnerability.

This advisory is posted at 

The related advisory is published at 

.

CSCsd92405

Cisco IOS device may crash while processing malformed Secure Sockets Layer (SSL) packets. In 
order to trigger these vulnerabilities, a malicious client must send malformed packets during the SSL 
protocol exchange with the vulnerable device.

Successful repeated exploitation of any of these vulnerabilities may lead to a sustained 
Denial-of-Service (DoS); however, vulnerabilities are not known to compromise either the 
confidentiality or integrity of the data or the device. These vulnerabilities are not believed to allow 
an attacker will not be able to decrypt any previously encrypted information.

Cisco IOS is affected by the following vulnerabilities:

Processing ClientHello messages, documented as Cisco bug ID CSCsb12598 

Processing ChangeCipherSpec messages, documented as Cisco bug ID CSCsb40304 

Processing Finished messages, documented as Cisco bug ID CSCsd92405

Cisco has made free software available to address these vulnerabilities for affected customers. There 
are workarounds available to mitigate the effects of these vulnerabilities.

This advisory is posted at 

.

Another related advisory has been posted with this advisory. This additional advisory also 
describes a vulnerability related to cryptography that affects Cisco IOS. This related advisory is 
available at the following link: 

CSCse16085—Wi-Fi WMM test failure no longer occurs.