5335 matches found
CVE-2011-4023
Memory leak in libcmd in Cisco NX-OS 5.0 on Nexus switches allows remote authenticated users to cause a denial of service memory consumption via SNMP requests, aka Bug ID CSCtr65682...
Cisco Nexus switches DoS
Crash on IP filtering...
Cisco Security Advisory: Cisco NX-OS Malformed IP Packet Denial of Service Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco NX-OS Malformed IP Packet Denial of Service Vulnerability Advisory ID: cisco-sa-20120215-nxos Revision 1.0 For Public Release 2012 February 15 16:00 UTC GMT...
CVE-2012-0352
Cisco NX-OS DoS vulnerability CVE-2012-0352 affects Nexus 1000v (4.2.x before 4.2(1)SV1(5.1)), Nexus 5000 (4.x/5.0.x before 5.0(2)N1(1)) and Nexus 7000 (4.2.x before 4.2.8, 5.0.x before 5.0.5, 5.1.x before 5.1.1). The issue allows remote attackers to crash the netstack process and reload the devi...
Cisco Nexus设备IP栈远程拒绝服务漏洞
Bugtraq ID: 52027 CVE ID:CVE-2012-0352 Cisco Nexus系列交换机是数据中心级交换机。采用Cisco Nexus OS操作系统 当操作系统IP栈处理畸形IP报文和从报文中获取第四层UDP或TCP信息时Cisco NX-OS软件受拒绝服务漏洞影响,可导致运行受此漏洞影响软件的Cisco Nexus 1000v, 5000和7000系列交换机重载 通过设备(过境)通信和到设备的通信都能触发此漏洞 0 Cisco Nexus 7000 Cisco Nexus 5000 Cisco Nexus 1000V 厂商解决方案 Cisco -----...
Cisco Releases Security Advisory for Cisco NX-OS
Cisco has released a security advisory to address a vulnerability in the following Cisco NX-OS Software Series: Cisco Nexus 1000v Series Switches Cisco Nexus 5000 Series Switches Cisco Nexus 7000 Series Switches Exploitation of this vulnerability may allow an attacker to cause a denial-of-service...
Google Android 2.3.5 - PowerVR SGX Driver Information Disclosure
// source: https://www.securityfocus.com/bid/57900/info The PowerVR SGX driver in Android is prone to an information-disclosure vulnerability. Successful exploits allows an attacker to gain access to sensitive information. Information obtained may aid in further attacks. Android 2.3.5 and prior...
Cisco Nexus switches protection bypass
It's possible to bypass ACL limitation. Local code execution...
RE: [CVE-2011-2569] Cisco Nexus OS (NX-OS) - Command "injection" / sanitization issues.
Hello, This is Paul Oxman with Cisco PSIRT. Please confirms the vulnerability reported by Peter Adkins, and has published an Intellishield response http://tools.cisco.com/security/center/viewAlert.x?alertId=24458 Additional information below. For current updates to Cisco PSIRT response, please se...
CVE-2011-2569
Cisco Nexus OS aka NX-OS 4.2 and 5.0 and Cisco Unified Computing System with software 1.4 and 2.0 do not properly restrict command-line options, which allows local users to gain privileges via unspecified vectors, aka Bug IDs CSCtf40008, CSCtg18363, CSCtr44645, CSCts10195, and CSCts10188...
Command injection
Cisco Nexus OS aka NX-OS 4.2 and 5.0 and Cisco Unified Computing System with software 1.4 and 2.0 do not properly restrict command-line options, which allows local users to gain privileges via unspecified vectors, aka Bug IDs CSCtf40008, CSCtg18363, CSCtr44645, CSCts10195, and CSCts10188...
CVE-2011-2569
Cisco NX-OS (Nexus OS) 4.2 and 5.0 and Cisco UCS software 1.4 and 2.0 are affected by CVE-2011-2569 due to improper sanitization of user input in CLI options, enabling authenticated, local users to escalate privileges via unspecified vectors. Root cause: insufficient restriction of command-line o...
CVE-2011-2569
Cisco Nexus OS aka NX-OS 4.2 and 5.0 and Cisco Unified Computing System with software 1.4 and 2.0 do not properly restrict command-line options, which allows local users to gain privileges via unspecified vectors, aka Bug IDs CSCtf40008, CSCtg18363, CSCtr44645, CSCts10195, and CSCts10188...
Cisco Nexus OS Software Command Injection Vulnerability
Cisco Nexus OS contains a vulnerability that could allow an authenticated, local attacker to execute arbitrary commands on a targeted device. The vulnerability is due to improper sanitization of user-supplied values to command line interface commands. An authenticated, local attacker could exploi...
[CVE-2011-2569] Cisco Nexus OS (NX-OS) - Command "injection" / sanitization issues.
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Cisco Nexus OS NX-OS - Command "injection" / sanitization issues. +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Discovery by: 1 Peter Adkins [email protected] Access: 1 Local;...
Cisco Nexus OS (NX-OS) Command Injection
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Cisco Nexus OS NX-OS - Command "injection" / sanitization issues. +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Discovery by: 1 Peter Adkins Access: 1 Local; authenticated access is...
More Android vulnerabilities exposed [Video Demonstration]
More Android vulnerabilities exposed Video Demonstration It's been more than a month since researchers reported two serious security vulnerabilities in Android, but so far there's no indication when they will be purged from the Google-spawned operating system that's the world's most popular...
More Android vulnerabilities exposed [Video Demonstration]
More Android vulnerabilities exposed Video Demonstration It's been more than a month since researchers reported two serious security vulnerabilities in Android, but so far there's no indication when they will be purged from the Google-spawned operating system that's the world's most popular...
CVE-2011-2581
The ACL implementation in Cisco NX-OS 5.02 and 5.03 before 5.03N21 on Nexus 5000 series switches, and NX-OS before 5.03U12a on Nexus 3000 series switches, does not properly handle comments in conjunction with deny statements, which allows remote attackers to bypass intended access restrictions in...
Design/Logic Flaw
The ACL implementation in Cisco NX-OS 5.02 and 5.03 before 5.03N21 on Nexus 5000 series switches, and NX-OS before 5.03U12a on Nexus 3000 series switches, does not properly handle comments in conjunction with deny statements, which allows remote attackers to bypass intended access restrictions in...