Summary
Multiple Cisco NX-OS-Based products are prone to multiple remote buffer- overflow vulnerabilities because they fail to perform adequate boundary- checks on user-supplied data.
Impact
An attacker can exploit these issues to execute arbitrary code with the elevated privileges. Failed exploit attempts will result in a denial-of- service condition.
Solution
Updates are available. Please see the references or vendor advisory for more information.
Insight
There are multiple buffer overflows in:
the Cisco Discovery Protocol (CDP) implementation and the SNMP and License Manager implementations
Affected
These issues being tracked by Cisco Bug IDs CSCtu10630, CSCtu10551, CSCtu10550, CSCtw56581, CSCtu10548, CSCtu10544, and CSCuf61275.
Detection
Check the version from SNMP sysdesc
References
- http://cxsecurity.com/cveshow/CVE-2013-1178
- http://cxsecurity.com/cveshow/CVE-2013-1179
- http://cxsecurity.com/cveshow/CVE-2013-1180
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130424-nxosmulti
- http://www.securityfocus.com/bid/59452
- http://www.securityfocus.com/bid/59454
- http://www.securityfocus.com/bid/59456
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2013-1178, CVE-2013-1179, CVE-2013-1180 -
CVSS Base Score: 9.0
AV:N/AC:L/Au:S/C:C/I:C/A:C
Related Vulnerabilities
- Cisco Prime LAN Management Solution Remote Command Execution Vulnerability
- Cisco IOS XR Software Fragmented Packets Processing Denial of Service Vulnerability
- Multiple Cisco Nexus Devices IP Stack Remote Denial of Service Vulnerability
- Cisco TelePresence TC and TE Software Multiple Security Vulnerabilities
- CISCO Secure ACS Management Interface Login Overflow