Vulnerability in Cisco Access Points operating in Lightweight Access Point Protocol (LWAPP)

By klsh on November 3, 2005 9:30 AM | | Comments (0)

Cisco Security Advisory: Cisco Airespace Wireless LAN Controllers Allow Unencrypted Network Access� [Products & Services] - Cisco Systems
I think the idea of thin AP's is economically sound, but I'd rather see functionality built out rather than centralized.

Cisco Access Points operating in Lightweight Access Point Protocol (LWAPP) mode may allow unauthenticated end hosts to send unencrypted traffic to a secure network by sending frames from the Media Access Control (MAC) address of an already authenticated end host.

Only the access points that are operating in LWAPP (i.e., controlled by a separate Wireless LAN Controller) mode are affected. Access points that are running in autonomous mode are not affected.

Cisco has made free software available to address this vulnerability for affected customers.

Leave a comment

About this Entry

This page contains a single entry by klsh published on November 3, 2005 9:30 AM.

ntop a top like network monitoring status tool was the previous entry in this blog.

Michael Lynn lands new job life after Cisco Flap is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Powered by Movable Type 4.01

Search