ID de Prueba:	1.3.6.1.4.1.25623.1.0.105709
Categoría:	CISCO
Título:	Cisco NX-OS Software TACACS+ Command Authorization Vulnerability (Cisco-SA-20150202-CVE-2014-8013)
Resumen:	A vulnerability in the TACACS+ command authorization feature of; Cisco NX-OS Software could allow an authenticated, local attacker to cause the system to reset.
Descripción:	Summary: A vulnerability in the TACACS+ command authorization feature of Cisco NX-OS Software could allow an authenticated, local attacker to cause the system to reset. Vulnerability Insight: The vulnerability is due to incorrect processing of very long command-line interface (CLI) commands by the TACACS+ command authorization feature. An attacker could exploit this vulnerability by being locally authenticated and executing a long CLI command that is subject to command authorization. Vulnerability Impact: An exploit could allow the attacker to cause the device to reload. Solution: See the referenced vendor advisory for a solution. CVSS Score: 4.9 CVSS Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-8013 BugTraq ID: 72393 http://www.securityfocus.com/bid/72393 Cisco Security Advisory: 20150130 Cisco NX-OS Software TACACS+ Command Authorization Vulnerability http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8013 http://www.securitytracker.com/id/1031685
Copyright	Copyright (C) 2016 Greenbone Networks GmbH

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.