Cisco has warned that its Wireless Control System application has a series of bugs that could let hackers gain complete control of an installation.
Wireless Control System is a local area network planning, configuration and management application. The bugs affect WCS 3.2 for Linux and Windows – except for one flaw that affects version 4.0 and for which a fix is not yet available.
The warning, posted on Cisco’s website, says the company is not aware of any malicious exploitation.
The advisory warns that the vulnerabilities could enable hackers to lure users towards malicious websites, give access to sensitive information such as WCS usernames and directory paths, or allow an attacker to read from or write to arbitrary locations in the filesystem.
Cisco said it would make free software available to address the vulnerability for affected users.
In November, Cisco was forced to warn users of a security flaw in its wireless local area network controllers that could allow attackers to send malicious traffic on secured Wi-Fi networks.