Guest

Preview Tool

Cisco Bug: CSCur02981 - WLC evaluation for CVE-2014-6271 and CVE-2014-7169

Last Modified

Sep 12, 2019

Products (1)

  • Cisco 5500 Series Wireless Controllers

Known Affected Releases

7.4(121.0) 7.6(130.0) 8.0(0.30220.385) 8.0(100.0)

Description (partial)

Symptom:
The following Cisco products:
  4400, wism1 
  5500, wism2
  7500,8500
  2100, 2000 
Wireless Lan Controllers

include a version of bash that is affected by the vulnerabilities identified by the Common Vulnerability and Exposures (CVE) IDs:

CVE-2014-6271 
CVE-2014-6277
CVE-2014-6278
CVE-2014-7169
CVE-2014-7186
CVE-2014-7187

Cisco has analyzed this vulnerability and concluded that while the previously listed products may run a vulnerable version of Bash, there are no exploitation vectors present - therefore, those products are not impacted.

Next releases will include an updated bash binary version.

Conditions:
Not applicable

Related Community Discussions

GNU bashbug <key>CSCur02981</key>
I see that relase 7.4(121.0) is affected by the new bashbug. Is it safe to say that previous versions of 7.4 also is affected. GNU bash 1.14 has been out for a few years.   Regards, Philip
Latest activity: Sep 29, 2014
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.