Guest

Preview Tool

Cisco Bug: CSCur27551 - SSLv3 Poodle attack against https in wlc, CVE-2014­-3566

Last Modified

Oct 16, 2018

Products (1)

  • Cisco 5500 Series Wireless Controllers

Known Affected Releases

7.0(250.0) 7.4(121.0) 7.6(130.0) 8.0(100.0) 8.1(10.57)

Description (partial)

Symptom:
This product includes a version of SSL that is affected by the vulnerability identified by the Common Vulnerability and Exposures (CVE) IDs:

CVE-2014-3566

This bug has been opened to address the potential impact on this product.
This applies to all WLCs types (5500/wism2/2500/4400/2100/7500/8500, etc)

Conditions:
HTTPS Management, webauth are vulnerable by default

Related Community Discussions

<key>CSCur27551</key> - SSLv3 Poodle attack against https in wlc, CVE-2014??-3566 - 1
Is there  a reason why Cisco doesn't add this code/fix 7.6.130.13 to their main downloads for the 5508 WLC?  I need to get this again and most likely need to resubmit a ticket just to get a link to download.
Latest activity: Dec 09, 2014
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.