I discovered a software vulnerability related to Cisco wireless LAN controllers back in June 2012. I immediately reported this to Cisco PSIRT (Product Security Incident Response Team). As of 23rd January 16:00 UTC, Cisco has released a public disclosure. It can be seen here.
I have documented a full demonstration of this exploit using my OG150 security drop box. If you are interested go to my website; http://www.og150.com/tutorials.php and download the PDF related to "Razzlerock Hack" - CVE ID CVE-2013-1105. Note: Cisco PSIRT are aware of this publically released document.
If you have any comments please let me know.