Lucene search

CiscoCISCO-SA-20161005-OTV

HistoryOct 05, 2016 - 4:00 p.m.

Cisco Nexus 7000 and 7700 Series Switches Overlay Transport Virtualization Buffer Overflow Vulnerability

2016-10-0516:00:00

tools.cisco.com

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.02

Percentile

89.0%

JSON

A vulnerability in the Overlay Transport Virtualization (OTV) generic routing encapsulation (GRE) implementation of the Cisco Nexus 7000 and 7700 Series Switches could allow an unauthenticated, adjacent attacker to cause a reload of the affected system or to remotely execute code.

The vulnerability is due to incomplete input validation performed on the size of OTV packet header parameters, which can result in a buffer overflow. An attacker could exploit this vulnerability by sending a crafted OTV UDP packet to the OTV interface on an affected device. An exploit could allow the attacker to execute arbitrary code and obtain full control of the system or cause a reload of the OTV related process on the affected device.

Cisco has released software updates that address this vulnerability. A workaround to mitigate this vulnerability is available.

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-otv[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-otv”]

Affected configurations

Vulners

Node

cisconx_osMatch4.1

cisconx_osMatch5.0

cisconx_osMatch4.2

cisconx_osMatch5.1

cisconx_osMatch5.2

cisconx_osMatch6.1

cisconx_osMatch6.0

cisconx_osMatch6.2

cisconx_osMatch4.1\(2\)

cisconx_osMatch4.1\(3\)

cisconx_osMatch4.1\(4\)

cisconx_osMatch4.1\(5\)

cisconx_osMatch5.0\(2a\)

cisconx_osMatch5.0\(3\)

cisconx_osMatch5.0\(5\)

cisconx_osMatch4.2\(2a\)

cisconx_osMatch4.2\(3\)

cisconx_osMatch4.2\(4\)

cisconx_osMatch4.2\(6\)

cisconx_osMatch4.2\(8\)

cisconx_osMatch5.1\(1\)

cisconx_osMatch5.1\(1a\)

cisconx_osMatch5.1\(3\)

cisconx_osMatch5.1\(4\)

cisconx_osMatch5.1\(5\)

cisconx_osMatch5.1\(6\)

cisconx_osMatch5.2\(1\)

cisconx_osMatch5.2\(3a\)

cisconx_osMatch5.2\(4\)

cisconx_osMatch5.2\(5\)

cisconx_osMatch5.2\(7\)

cisconx_osMatch5.2\(9\)

cisconx_osMatch6.1\(1\)

cisconx_osMatch6.1\(2\)

cisconx_osMatch6.1\(3\)

cisconx_osMatch6.1\(4\)

cisconx_osMatch6.1\(4a\)

cisconx_osMatch6.1\(5\)

cisconx_osMatch6.0\(1\)

cisconx_osMatch6.0\(2\)

cisconx_osMatch6.0\(3\)

cisconx_osMatch6.0\(4\)

cisconx_osMatch6.2\(2\)

cisconx_osMatch6.2\(2a\)

cisconx_osMatch6.2\(6\)

cisconx_osMatch6.2\(6b\)

cisconx_osMatch6.2\(8\)

cisconx_osMatch6.2\(8a\)

cisconx_osMatch6.2\(8b\)

cisconx_osMatch6.2\(10\)

cisconx_osMatch6.2\(12\)

VendorProductVersionCPE
cisconx_os4.1cpe:2.3:o:cisco:nx_os:4.1:*:*:*:*:*:*:*
cisconx_os5.0cpe:2.3:o:cisco:nx_os:5.0:*:*:*:*:*:*:*
cisconx_os4.2cpe:2.3:o:cisco:nx_os:4.2:*:*:*:*:*:*:*
cisconx_os5.1cpe:2.3:o:cisco:nx_os:5.1:*:*:*:*:*:*:*
cisconx_os5.2cpe:2.3:o:cisco:nx_os:5.2:*:*:*:*:*:*:*
cisconx_os6.1cpe:2.3:o:cisco:nx_os:6.1:*:*:*:*:*:*:*
cisconx_os6.0cpe:2.3:o:cisco:nx_os:6.0:*:*:*:*:*:*:*
cisconx_os6.2cpe:2.3:o:cisco:nx_os:6.2:*:*:*:*:*:*:*
cisconx_os4.1(2)cpe:2.3:o:cisco:nx_os:4.1\(2\):*:*:*:*:*:*:*
cisconx_os4.1(3)cpe:2.3:o:cisco:nx_os:4.1\(3\):*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	nx_os	4.1	cpe:2.3:o:cisco:nx_os:4.1:::::::*
cisco	nx_os	5.0	cpe:2.3:o:cisco:nx_os:5.0:::::::*
cisco	nx_os	4.2	cpe:2.3:o:cisco:nx_os:4.2:::::::*
cisco	nx_os	5.1	cpe:2.3:o:cisco:nx_os:5.1:::::::*
cisco	nx_os	5.2	cpe:2.3:o:cisco:nx_os:5.2:::::::*
cisco	nx_os	6.1	cpe:2.3:o:cisco:nx_os:6.1:::::::*
cisco	nx_os	6.0	cpe:2.3:o:cisco:nx_os:6.0:::::::*
cisco	nx_os	6.2	cpe:2.3:o:cisco:nx_os:6.2:::::::*
cisco	nx_os	4.1(2)	cpe:2.3:o:cisco:nx_os:4.1\(2\):::::::*
cisco	nx_os	4.1(3)	cpe:2.3:o:cisco:nx_os:4.1\(3\):::::::*

Rows per page:

1-10 of 511

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-otv

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.02

Percentile

89.0%

JSON

Related for CISCO-SA-20161005-OTV