Summary
Cisco NX-OS is prone to a denial-of-service vulnerability because it fails to properly sanitize user-supplied input.
Impact
An attacker can exploit this issue to cause the BGP service to reset and resync, denying service to legitimate users.
Solution
Updates are available. Please see the references or vendor advisory for more information.
Insight
This issue is being tracked by Cisco bug ID CSCtn13055.
Affected
Cisco Nexus 7000 Series running on NX-OS.
Detection
Check the NX OS version.
References
Severity
Classification
-
CVE CVE-2012-4098 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Cisco Nexus 7000 Series Switches Local Denial of Service Vulnerability
- Cisco Open Network Environment Platform Denial of Service Vulnerability
- Cisco NX-OS Label Distribution Protocol Message Remote Denial of Service Vulnerability
- Cisco Nexus 1000V Local Arbitrary Command Execution Vulnerability
- Cisco Nexus 7000 Series Switches Remote Denial of Service Vulnerability