Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers

http://www.cisco.com/warp/public/707/cisco-sa-20090727-wlc.shtml

It appears that there are 3 DoS and 1 unauthorized configuration
vulnerabilities in Cisco WLCs. Cisco has released software updates to
fix these vulnerabilities.

Vulnerable hardware includes: "Cisco 1500 Series, 2000 Series, 2100
Series, 4400 Series, 4100 Series, 4200 Series, Wireless Services Modules
(WiSM), WLC Modules for Integrated Services Routers, and Cisco Catalyst
3750G Integrated Wireless LAN Controllers are affected".

"The SSH connections denial of service vulnerability identified by
Cisco Bug ID CSCsw40789 may be remediated by disabling SSH on the
affected device."

No public exploitation is known at this time.

It is recommended to update to the latest patch release for these
devices. Until that patch can be implemented, workarounds should be
considered.