SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Device (Router/Bridge/Hub)  >   Cisco NX-OS Vendors:   Cisco
Cisco NX-OS LISP Packet Processing Flaw Lets Remote Users Cause the Target M1 Ethernet Module to Reload
SecurityTracker Alert ID:  1035384
SecurityTracker URL:  http://securitytracker.com/id/1035384
CVE Reference:   CVE-2016-1351   (Links to External Site)
Date:  Mar 23 2016
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): NX-OS on Nexus 7000 and 7700 Series Switches with an M1 Series Gigabit Ethernet Module
Description:   A vulnerability was reported in Cisco NX-OS on Nexus 7000 and 7700 Series Switches. A remote user can cause the target interface module to reload.

A remote user can send a specially crafted Locator/ID Separation Protocol (LISP) packet to UDP port 4341 on the target device to cause to target M1 Ethernet module to reload.

Nexus 7000 and 7700 Series Switches with an M1 Series Gigabit Ethernet Module are affected.

Systems with LISP configured are affected.

The vendor has assigned bug IDs CSCuu64279 and CSCuv11993 to this vulnerability.

Impact:   A remote user can cause the target M1 Ethernet module to reload.
Solution:   The vendor has issued a fix (7.3(0)D1(1)).

The vendor's advisory is available at:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-lisp

Vendor URL:  tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-lisp (Links to External Site)
Cause:   State error

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC