CVE-2009-2976

high

Description

Cisco Aironet Lightweight Access Point (AP) devices send the contents of certain multicast data frames in cleartext, which allows remote attackers to discover Wireless LAN Controller MAC addresses and IP addresses, and AP configuration details, by sniffing the wireless network.

References

http://www.airmagnet.com/news/press_releases/2009/08252009.php

http://www.airmagnet.com/assets/AM_Technote_SkyJack_082509.pdf

http://securitytracker.com/id?1022774

Details

Source: Mitre, NVD

Published: 2009-08-27

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

EPSS

EPSS: 0.00257