Published: 25/04/2013 Updated: 29/04/2013

CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8

VMScore: 801

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

Multiple buffer overflows in the (1) SNMP and (2) License Manager implementations in Cisco NX-OS on Nexus 7000 devices 4.x and 5.x prior to 5.2(5) and 6.x prior to 6.1(1) and MDS 9000 devices 4.x and 5.x prior to 5.2(5) allow remote authenticated users to execute arbitrary code via a crafted SNMP request, aka Bug ID CSCtx54830.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco nx-os 4.0\\(4\\)sv1\\(3a\\)
cisco nx-os 4.0\\(4\\)sv1\\(3b\\)
cisco nx-os 4.0\\(4\\)sv1\\(3c\\)
cisco nx-os 4.0
cisco nx-os 4.0\\(0\\)n1\\(2\\)
cisco nx-os 4.0\\(1a\\)n1\\(1\\)
cisco nx-os 4.0\\(0\\)n1\\(2a\\)
cisco nx-os 4.2\\(1\\)
cisco nx-os 5.0\\(2\\)n2\\(1\\)
cisco nx-os 5.0\\(2\\)n2\\(1a\\)
cisco nx-os 5.0\\(3\\)n1\\(1b\\)
cisco nx-os 5.0\\(2\\)n1\\(1\\)
cisco nx-os 5.2\\(3\\)
cisco nx-os 5.1\\(4\\)
cisco nx-os 5.1\\(3\\)
cisco nx-os 5.1\\(1a\\)
cisco nx-os 4.2\\(1\\)sv1\\(4a\\)
cisco nx-os 4.2\\(1\\)sv1\\(4\\)
cisco nx-os 4.1\\(3\\)n1\\(1a\\)
cisco nx-os 4.2\\(1\\)n2\\(1a\\)
cisco nx-os 4.2
cisco nx-os 4.1\\(3\\)n2\\(1a\\)
cisco nx-os 4.1.\\(5\\)
cisco nx-os 4.1.\\(4\\)
cisco nx-os 4.1.\\(3\\)
cisco nx-os 4.1.\\(2\\)
cisco nx-os 5.0\\(3\\)n1\\(1\\)
cisco nx-os 5.0\\(3\\)n1\\(1a\\)
cisco nx-os 5.0
cisco nx-os 5.2
cisco nx-os 5.1\\(6\\)
cisco nx-os 5.1\\(5\\)
cisco nx-os 6.0\\(1\\)
cisco nx-os 6.0\\(2\\)
cisco nx-os 4.0\\(4\\)sv1\\(2\\)
cisco nx-os 4.0\\(4\\)sv1\\(3d\\)
cisco nx-os 4.1\\(3\\)n1\\(1\\)
cisco nx-os 4.0\\(1a\\)n2\\(1\\)
cisco nx-os 4.1\\(3\\)n2\\(1\\)
cisco nx-os 4.2\\(1\\)n1\\(1\\)
cisco nx-os 4.2\\(4\\)
cisco nx-os 4.2\\(6\\)
cisco nx-os 5.1\\(3\\)n1\\(1a\\)
cisco nx-os 5.0\\(3\\)n2\\(2a\\)
cisco nx-os 5.0\\(3\\)n2\\(1\\)
cisco nx-os 5.1\\(3\\)n1\\(1\\)
cisco nx-os 5.0\\(3\\)
cisco nx-os 5.1\\(2\\)
cisco nx-os 5.0\\(5\\)
cisco nx-os 5.2\\(1\\)
cisco nx-os 6.1
cisco nx-os 4.0\\(4\\)sv1\\(1\\)
cisco nx-os 4.2\\(1\\)sv1\\(5.1\\)
cisco nx-os 4.0\\(4\\)sv1\\(3\\)
cisco nx-os 4.0\\(1a\\)n2\\(1a\\)
cisco nx-os 4.0\\(1a\\)n1\\(1a\\)
cisco nx-os 4.2\\(1\\)n2\\(1\\)
cisco nx-os 4.0\\(0\\)n1\\(1a\\)
cisco nx-os 4.2\\(2\\)
cisco nx-os 4.2.\\(2a\\)
cisco nx-os 4.2\\(3\\)
cisco nx-os 4.2\\(8\\)
cisco nx-os 5.0\\(3\\)n2\\(2b\\)
cisco nx-os 5.0\\(3\\)n2\\(2\\)
cisco nx-os 5.0\\(3\\)n1\\(1c\\)
cisco nx-os 5.1
cisco nx-os 5.0\\(2a\\)
cisco nx-os 5.0\\(2\\)
cisco nx-os 5.1\\(1\\)
cisco nx-os 5.2\\(3a\\)
cisco nx-os 5.2\\(4\\)
cisco nexus_7000_10-slot -
cisco nexus_7000_18-slot -
cisco nexus_7000_9-slot -
cisco nexus_7000 -
cisco mds_9000

Cisco Nexus, Cisco Unified Computing System (UCS), Cisco MDS 9000 Series Multilayer Switches, and Cisco 1000 Series Connected Grid Routers (CGR) are all based on the Cisco NX-OS operating system These products are affected by one or more of the following vulnerabilities: Multiple Cisco Discovery Protocol Vulnerabilities in Cisco NX-OS-Based ...

CWE-119 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130424-nxosmulti https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130424-nxosmulti

CVE-2013-1179

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect