Cisco has made big strides in upgrading the standard of its wireless internet devices for small companies by releasing a series of new patch fixes, reports threatpost.com.
The communications giant had seen evidence of remote attackers gaining administrative access to its wireless LAN controllers and routers through a vulnerability found in their web management interface.
This was present in devices including the Cisco RV100W Wireless-N VPN Firewall, CVR100W Wireless-N VPN Router and RV215W Wireless-N VPN Router.
However, as reported by pcadvisor.co.uk, this is now no longer the case thanks to firmware version 1.0.1.21 for the CVR100W, 1.2.0.10 for the RV100W and 1.1.0.6 for the RV215W.
All three versions also eliminated the chance of each device succumbing to denial-of-service attacks which, as stated by the company in a recent advisory, can allow a hacker to make arbitrary changes to the configuration of the product’s AP.
Cisco’s patch-issuing spree closed up five denial-of-service vulnerabilities and one unauthorised access vulnerability in the software of its various modular wireless LAN controllers.
Some of the affected products include the Cisco 500 Series Wireless Express Mobility Controllers, the Cisco Catalyst 6500 Series/7600 Series Wireless Services Module and the Cisco Wireless Controller Software for Services-Ready Engine (SRE), all of which are popular solutions for small businesses.
