CISCO : Cisco Nexus 9000 Series Switches Reserved VLAN Number Vulnerability (Cisco-SA-20150916-CVE-2015-6295)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.105377

Categoría: CISCO

Título: Cisco Nexus 9000 Series Switches Reserved VLAN Number Vulnerability (Cisco-SA-20150916-CVE-2015-6295)

Resumen: A vulnerability in the handling of incoming Layer 2 packets; tagged with a Cisco Nexus 9000 Series Switch (N9K) reserved VLAN number could allow an; unauthenticated, adjacent attacker to cause a partial denial of service (DoS) condition due to; increased CPU utilization and possible control plane instability. In addition, Layer 2 packets,; which should be dropped by the switch, may be incorrectly forwarded to the connected interfaces.

Descripción: Summary:
A vulnerability in the handling of incoming Layer 2 packets
tagged with a Cisco Nexus 9000 Series Switch (N9K) reserved VLAN number could allow an
unauthenticated, adjacent attacker to cause a partial denial of service (DoS) condition due to
increased CPU utilization and possible control plane instability. In addition, Layer 2 packets,
which should be dropped by the switch, may be incorrectly forwarded to the connected interfaces.

Vulnerability Insight:
The vulnerability is due to lack of validation of the VLAN
number in the Layer 2 packet. An attacker could exploit this vulnerability by sending a crafted
Layer 2 packet tagged with an N9K reserved VLAN number.

Vulnerability Impact:
An exploit could allow the attacker to cause a partial DoS
condition due to increased CPU utilization and possible control plane instability. In addition,
this packet should be dropped by the N9K, but could be forwarded to the attached networks.

Affected Software/OS:
Nexus 9000 Series 7.0(3)I1(1) and 6.1(2)I3(4).

Solution:
See the referenced vendor advisory for a solution.

CVSS Score:
4.8

CVSS Vector:
AV:A/AC:L/Au:N/C:P/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2015-6295
Cisco Security Advisory: 20150916 Cisco Nexus 9000 Series Switches Reserved VLAN Number Vulnerability
http://tools.cisco.com/security/center/viewAlert.x?alertId=40990
http://www.securitytracker.com/id/1033611

Copyright Copyright (C) 2015 Greenbone Networks GmbH

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.105377
Categoría:	CISCO
Título:	Cisco Nexus 9000 Series Switches Reserved VLAN Number Vulnerability (Cisco-SA-20150916-CVE-2015-6295)
Resumen:	A vulnerability in the handling of incoming Layer 2 packets; tagged with a Cisco Nexus 9000 Series Switch (N9K) reserved VLAN number could allow an; unauthenticated, adjacent attacker to cause a partial denial of service (DoS) condition due to; increased CPU utilization and possible control plane instability. In addition, Layer 2 packets,; which should be dropped by the switch, may be incorrectly forwarded to the connected interfaces.
Descripción:	Summary: A vulnerability in the handling of incoming Layer 2 packets tagged with a Cisco Nexus 9000 Series Switch (N9K) reserved VLAN number could allow an unauthenticated, adjacent attacker to cause a partial denial of service (DoS) condition due to increased CPU utilization and possible control plane instability. In addition, Layer 2 packets, which should be dropped by the switch, may be incorrectly forwarded to the connected interfaces. Vulnerability Insight: The vulnerability is due to lack of validation of the VLAN number in the Layer 2 packet. An attacker could exploit this vulnerability by sending a crafted Layer 2 packet tagged with an N9K reserved VLAN number. Vulnerability Impact: An exploit could allow the attacker to cause a partial DoS condition due to increased CPU utilization and possible control plane instability. In addition, this packet should be dropped by the N9K, but could be forwarded to the attached networks. Affected Software/OS: Nexus 9000 Series 7.0(3)I1(1) and 6.1(2)I3(4). Solution: See the referenced vendor advisory for a solution. CVSS Score: 4.8 CVSS Vector: AV:A/AC:L/Au:N/C:P/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-6295 Cisco Security Advisory: 20150916 Cisco Nexus 9000 Series Switches Reserved VLAN Number Vulnerability http://tools.cisco.com/security/center/viewAlert.x?alertId=40990 http://www.securitytracker.com/id/1033611
Copyright	Copyright (C) 2015 Greenbone Networks GmbH