Lucene search

[email protected]CVE-2013-6701

HistoryDec 18, 2013 - 4:04 p.m.

CVE-2013-6701

2013-12-1816:04:34

CWE-20

[email protected]

web.nvd.nist.gov

cve-2013-6701

cisco

ons 15454

denial of service

remote attackers

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.9 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.1%

JSON

The tNetTaskLimit process on the Transport Node Controller (TNC) on Cisco ONS 15454 devices with software 9.6 and earlier does not properly prioritize health pings, which allows remote attackers to cause a denial of service (watchdog timeout and TNC reset) via a flood of network traffic, aka Bug ID CSCud97155.

Affected configurations

NVD

Node

ciscocisco_ons_15454_system_softwareMatch9.0

ciscocisco_ons_15454_system_softwareMatch9.1

ciscocisco_ons_15454_system_softwareMatch9.2

ciscocisco_ons_15454_system_softwareMatch9.2.1

ciscocisco_ons_15454_system_softwareMatch9.2.2

ciscocisco_ons_15454_system_softwareMatch9.3

ciscocisco_ons_15454_system_softwareMatch9.4

ciscocisco_ons_15454_system_softwareMatch9.6

ciscoons_15454_mspp

ciscoons_15454_mstp

ciscoons_15454e_optical_transport_platform

AND

ciscoons_15454

ciscoons_15454_multiservice_transport_platform

ciscoons_15454_sdh_multiservice_provisioning_platform

ciscoons_15454_sonet_multiservice_provisioning_platform

CPENameOperatorVersion
cisco:cisco_ons_15454_system_softwarecisco cisco ons 15454 system softwareeq9.0
cisco:cisco_ons_15454_system_softwarecisco cisco ons 15454 system softwareeq9.1
cisco:cisco_ons_15454_system_softwarecisco cisco ons 15454 system softwareeq9.2
cisco:cisco_ons_15454_system_softwarecisco cisco ons 15454 system softwareeq9.2.1
cisco:cisco_ons_15454_system_softwarecisco cisco ons 15454 system softwareeq9.2.2
cisco:cisco_ons_15454_system_softwarecisco cisco ons 15454 system softwareeq9.3
cisco:cisco_ons_15454_system_softwarecisco cisco ons 15454 system softwareeq9.4
cisco:cisco_ons_15454_system_softwarecisco cisco ons 15454 system softwareeq9.6
cisco:ons_15454_msppcisco ons 15454 msppeq*
cisco:ons_15454_mstpcisco ons 15454 mstpeq*

CPE	Name	Operator	Version
cisco:cisco_ons_15454_system_software	cisco cisco ons 15454 system software	eq	9.0
cisco:cisco_ons_15454_system_software	cisco cisco ons 15454 system software	eq	9.1
cisco:cisco_ons_15454_system_software	cisco cisco ons 15454 system software	eq	9.2
cisco:cisco_ons_15454_system_software	cisco cisco ons 15454 system software	eq	9.2.1
cisco:cisco_ons_15454_system_software	cisco cisco ons 15454 system software	eq	9.2.2
cisco:cisco_ons_15454_system_software	cisco cisco ons 15454 system software	eq	9.3
cisco:cisco_ons_15454_system_software	cisco cisco ons 15454 system software	eq	9.4
cisco:cisco_ons_15454_system_software	cisco cisco ons 15454 system software	eq	9.6
cisco:ons_15454_mspp	cisco ons 15454 mspp	eq	*
cisco:ons_15454_mstp	cisco ons 15454 mstp	eq	*

Rows per page:

1-10 of 151

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6701

tools.cisco.com/security/center/viewAlert.x?alertId=32200

www.securitytracker.com/id/1029512

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.9 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.1%

JSON

Related for CVE-2013-6701

cvelist1 nvd1 prion1 cisco1