Cisco Systems has released patches to fix serious denial-of-service flaws in its Wireless LAN Controller (WLC) software and the Secure Real-Time Transport Protocol (SRTP) library that’s used in many products. One vulnerability is rated critical and could be exploited by an unauthenticated attacker through specially crafted requests sent to the device. The second vulnerability stems from how the Cisco WLC software handles Bonjour traffic and can be exploited in a similar manner as the HTTP one. A third DoS vulnerability was patched in the Cisco AireOS software that also runs on some of the company’s wireless LAN Controller devices.”]