Cisco has issued two sets of patches that address a number of security flaws in the software used to manage its wireless networking products. One fixes flaws in the Wireless Control System software used to manage the company's Aironet Lightweight Access Points, Wireless LAN Controllers, and Wireless Location Appliance. The second set of patches fixes bugs in the Wireless LAN Controller, which controls Aironet access points as well as flaws in the access points themselves. These flaws could be exploited to disrupt networking services, gain access to information, or even take control of an access point.
The Wireless Control System patch fixes "multiple vulnerabilities that can result in information disclosure, privilege escalation, and unauthorized access," the company said in a security advisory. In its second advisory, Cisco said it has also patched flaws that affect the Wireless LAN Controller, the company's Catalyst series switches, and 1000-series and 1500-series models of the Aironet access points.
News source: InfoWorld