Примечания к выпуску для Cisco Cisco 4404 Wireless LAN Controller
18
Release Notes for Cisco Wireless LAN Controllers and Lightweight Access Points for Release 3.2.215.0
OL-31336-01
Caveats
Caveats
This section lists resolved and closed caveats in operating system release 3.2.215.0 for Cisco controllers
and lightweight access points.
and lightweight access points.
Resolved Caveats
These caveats are resolved in operating system release 3.2.215.0:
•
CSCsi13344—Three separate Cisco IOS Hypertext Transfer Protocol (HTTP) cross-site scripting
(XSS) vulnerabilities and a cross-site request forgery (CSRF) vulnerability have been reported to
Cisco by three independent researchers. The Cisco Security Response is posted at the following link:
(XSS) vulnerabilities and a cross-site request forgery (CSRF) vulnerability have been reported to
Cisco by three independent researchers. The Cisco Security Response is posted at the following link:
•
CSCsm82364—Multiple vulnerabilities exist in the Cisco Wireless LAN Controllers (WLCs), Cisco
Catalyst 6500 Wireless Services Modules (WiSMs), and Cisco Catalyst 3750 Integrated Wireless
LAN Controllers. This security advisory outlines details of the following vulnerabilities:
Catalyst 6500 Wireless Services Modules (WiSMs), and Cisco Catalyst 3750 Integrated Wireless
LAN Controllers. This security advisory outlines details of the following vulnerabilities:
–
Denial of Service Vulnerabilities (total of three)
–
Privilege Escalation Vulnerability
These vulnerabilities are independent of each other. Cisco has released free software updates that
address these vulnerabilities. There are no workarounds available for these vulnerabilities.
address these vulnerabilities. There are no workarounds available for these vulnerabilities.
The advisory is posted at
•
CSCso60979—Multiple vulnerabilities exist in the Cisco Wireless LAN Controllers (WLCs), Cisco
Catalyst 6500 Wireless Services Modules (WiSMs), and Cisco Catalyst 3750 Integrated Wireless
LAN Controllers. This security advisory outlines details of the following vulnerabilities:
Catalyst 6500 Wireless Services Modules (WiSMs), and Cisco Catalyst 3750 Integrated Wireless
LAN Controllers. This security advisory outlines details of the following vulnerabilities:
–
Denial of Service Vulnerabilities (total of three)
–
Privilege Escalation Vulnerability
These vulnerabilities are independent of each other. Cisco has released free software updates that
address these vulnerabilities. There are no workarounds available for these vulnerabilities.
address these vulnerabilities. There are no workarounds available for these vulnerabilities.
The advisory is posted at
•
CSCsq44516—Multiple vulnerabilities exist in the Cisco Wireless LAN Controllers (WLCs), Cisco
Catalyst 6500 Wireless Services Modules (WiSMs), and Cisco Catalyst 3750 Integrated Wireless
LAN Controllers. This security advisory outlines details of the following vulnerabilities:
Catalyst 6500 Wireless Services Modules (WiSMs), and Cisco Catalyst 3750 Integrated Wireless
LAN Controllers. This security advisory outlines details of the following vulnerabilities:
–
Denial of Service Vulnerabilities (total of three)
–
Privilege Escalation Vulnerability
These vulnerabilities are independent of each other. Cisco has released free software updates that
address these vulnerabilities. There are no workarounds available for these vulnerabilities.
address these vulnerabilities. There are no workarounds available for these vulnerabilities.
This advisory is posted at
•
CSCsr72301—Three separate Cisco IOS Hypertext Transfer Protocol (HTTP) cross-site scripting
(XSS) vulnerabilities and a cross-site request forgery (CSRF) vulnerability have been reported to
Cisco by three independent researchers. The Cisco Security Response is posted at the following link:
(XSS) vulnerabilities and a cross-site request forgery (CSRF) vulnerability have been reported to
Cisco by three independent researchers. The Cisco Security Response is posted at the following link: