| Cisco Wireless Control System Input Validation Flaw Lets Remote Authenticated Users Inject SQL Commands |
| Date Received: |
| 14 August 2010 |
| Severity: |
| Medium |
| Impact: |
| A remote authenticated user can modify the system configuration, including the configuration of the managed wireless devices. |
| Affected Version(s): |
| .0.x prior to 6.0.196.0 |
| Solution(s): |
| The vendor has issued a fix for (6.0.196.0) available at: http://www.cisco.com/warp/public/707/cisco-sa-20100811-wcs.shtml |
| Reference(s): |
| http://www.cisco.com/warp/public/707/cisco-sa-20100811-wcs.shtml |