ID
VAR-201304-0278
CVE
CVE-2013-1179
TITLE
Nexus 7000 and MDS 9000 Runs on the device Cisco NX-OS Vulnerable to buffer overflow
Trust: 0.8
DESCRIPTION
Multiple buffer overflows in the (1) SNMP and (2) License Manager implementations in Cisco NX-OS on Nexus 7000 devices 4.x and 5.x before 5.2(5) and 6.x before 6.1(1) and MDS 9000 devices 4.x and 5.x before 5.2(5) allow remote authenticated users to execute arbitrary code via a crafted SNMP request, aka Bug ID CSCtx54830. Nexus 7000 and MDS 9000 Runs on the device Cisco NX-OS of (1) SNMP and (2) License Manager There is a buffer overflow vulnerability in the implementation of. Vendors have confirmed this vulnerability CSCtx54830 It is released as.Crafted by remotely authenticated users SNMP Arbitrary code may be executed via a request. Multiple Cisco NX-OS-Based products are prone to a buffer-overflow vulnerability. This issue is being tracked by Cisco Bug ID CSCtx54830. Attackers can exploit this issue to execute arbitrary code with elevated privileges. Failed exploit attempts will result in denial-of-service conditions. Cisco NX-OS is a data center-oriented operating system developed by Cisco
Trust: 1.98
AFFECTED PRODUCTS
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0\(4\)sv1\(1\) | Trust: 1.6 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0\(4\)sv1\(3a\) | Trust: 1.6 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.2\(1\)sv1\(5.1\) | Trust: 1.6 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0 | Trust: 1.6 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0\(4\)sv1\(3c\) | Trust: 1.6 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0\(4\)sv1\(3\) | Trust: 1.6 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0\(4\)sv1\(3b\) | Trust: 1.6 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.2\(1\)sv1\(4a\) | Trust: 1.6 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0\(4\)sv1\(3d\) | Trust: 1.6 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0\(4\)sv1\(2\) | Trust: 1.6 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.1\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.2\(4\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 6.0\(2\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.1.\(4\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(3\)n2\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.2\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.2\(3\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.2\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.2\(6\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.2\(3a\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 6.0\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.1 | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.1.\(3\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0\(1a\)n1\(1a\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.1.\(2\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.1.\(5\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(3\)n1\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.1\(5\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0\(1a\)n1\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.2.\(2a\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(2\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.1\(3\)n1\(1a\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0\(1a\)n2\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.1\(6\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.2\(1\)n2\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.1\(3\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.2\(1\)n1\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.2\(1\)sv1\(4\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.2\(2\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.1\(2\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.2 | Trust: 1.0 |
| vendor: | cisco | model: | nexus 7000 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | cisco | model: | nexus 7000 9-slot | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 6.1 | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(3\)n1\(1a\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(2\)n1\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(2\)n2\(1a\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(3\)n2\(2a\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(2\)n2\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.1\(1a\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.2\(8\) | Trust: 1.0 |
| vendor: | cisco | model: | nexus 7000 18-slot | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0\(1a\)n2\(1a\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.1\(3\)n2\(1a\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.1\(3\)n1\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(3\)n1\(1b\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0\(0\)n1\(2a\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(2a\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.1\(3\)n1\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.2 | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(3\)n2\(2\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.2\(1\)n2\(1a\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(3\)n2\(2b\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0\(0\)n1\(2\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(3\)n1\(1c\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.2\(3\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.1\(3\)n1\(1a\) | Trust: 1.0 |
| vendor: | cisco | model: | nexus 7000 10-slot | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0 | Trust: 1.0 |
| vendor: | cisco | model: | mds 9000 | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.0\(0\)n1\(1a\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(3\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.0\(5\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.2\(4\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.1\(3\)n2\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.1\(4\) | Trust: 1.0 |
| vendor: | cisco | model: | nexus 7000 series switch | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 4.x ( cisco nexus 7000 series | Trust: 0.8 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | cisco mds 9000 series ) | Trust: 0.8 |
| vendor: | cisco | model: | nexus 7000 9 slot switch | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | nexus 7000 10 slot switch | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | mds 9000 series | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 5.2(5) | Trust: 0.8 |
| vendor: | cisco | model: | nexus 7000 18 slot switch | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | nx-os | scope: | eq | version: | 6.1(1) | Trust: 0.8 |
| vendor: | cisco | model: | nx-os | scope: | lt | version: | 5.x ( cisco nexus 7000 series | Trust: 0.8 |
| vendor: | cisco | model: | nx-os | scope: | lt | version: | 6.x ( cisco nexus 7000 series ) | Trust: 0.8 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-119 | Trust: 1.9 |
THREAT TYPE
remote
Trust: 0.6
TYPE
buffer overflow
Trust: 0.6
CONFIGURATIONS
PATCH
| title: | cisco-sa-20130424-nxosmulti | url: | http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130424-nxosmulti | Trust: 0.8 |
| title: | 29022 | url: | http://tools.cisco.com/security/center/viewAlert.x?alertId=29022 | Trust: 0.8 |
| title: | 28737 | url: | http://tools.cisco.com/security/center/viewAMBAlert.x?alertId=28737 | Trust: 0.8 |
| title: | cisco-sa-20130424-nxosmulti | url: | http://www.cisco.com/cisco/web/support/JP/111/1117/1117910_cisco-sa-20130424-nxosmulti-j.html | Trust: 0.8 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2013-1179 | Trust: 2.8 |
| db: | BID | id: | 59454 | Trust: 1.0 |
| db: | JVNDB | id: | JVNDB-2013-002469 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201304-527 | Trust: 0.7 |
| db: | CISCO | id: | 20130424 MULTIPLE VULNERABILITIES IN CISCO NX-OS-BASED PRODUCTS | Trust: 0.6 |
| db: | SECUNIA | id: | 53189 | Trust: 0.6 |
| db: | VULHUB | id: | VHN-61181 | Trust: 0.1 |
REFERENCES
| url: | http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20130424-nxosmulti | Trust: 2.0 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1179 | Trust: 0.8 |
| url: | http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-1179 | Trust: 0.8 |
| url: | http://secunia.com/advisories/53189 | Trust: 0.6 |
| url: | http://www.securityfocus.com/bid/59454 | Trust: 0.6 |
| url: | http://www.cisco.com/ | Trust: 0.3 |
CREDITS
Cisco
Trust: 0.9
SOURCES
| db: | VULHUB | id: | VHN-61181 |
| db: | BID | id: | 59454 |
| db: | JVNDB | id: | JVNDB-2013-002469 |
| db: | CNNVD | id: | CNNVD-201304-527 |
| db: | NVD | id: | CVE-2013-1179 |
LAST UPDATE DATE
2024-11-23T22:39:05.481000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-61181 | date: | 2013-04-29T00:00:00 |
| db: | BID | id: | 59454 | date: | 2013-04-24T00:00:00 |
| db: | JVNDB | id: | JVNDB-2013-002469 | date: | 2013-04-26T00:00:00 |
| db: | CNNVD | id: | CNNVD-201304-527 | date: | 2013-04-26T00:00:00 |
| db: | NVD | id: | CVE-2013-1179 | date: | 2024-11-21T01:49:03.523 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-61181 | date: | 2013-04-25T00:00:00 |
| db: | BID | id: | 59454 | date: | 2013-04-24T00:00:00 |
| db: | JVNDB | id: | JVNDB-2013-002469 | date: | 2013-04-26T00:00:00 |
| db: | CNNVD | id: | CNNVD-201304-527 | date: | 2013-04-25T00:00:00 |
| db: | NVD | id: | CVE-2013-1179 | date: | 2013-04-25T10:55:01.617 |