Vulnerabilities > CVE-2012-2469 - Remote Denial of Service vulnerability in Cisco NX-OS

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

cisco

NVD

Published: 2012-08-06

Updated: 2013-03-23

Summary

Cisco NX-OS 4.2, 5.0, 5.1, and 5.2 on Nexus 7000 series switches, when the High Availability (HA) policy is configured for Reset, allows remote attackers to cause a denial of service (device reset) via a malformed Cisco Discovery Protocol (CDP) packet, aka Bug IDs CSCtk34535 and CSCtk19132.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco NX OS 4.2 Cisco NX OS 5.0 Cisco NX OS 5.1 Cisco NX OS 5.2	4
Hardware	Cisco Cisco Nexus 7000 - Cisco Nexus 7000 10 Slot - Cisco Nexus 7000 18 Slot - Cisco Nexus 7000 9 Slot -	4

References

http://www.4salesbyself.com/troubleshooting-random-nexus-reboots.aspx
http://www.cisco.com/en/US/docs/switches/datacenter/sw/5_x/nx-os/release/notes/52_nx-os_release_note.html
http://www.securitytracker.com/id?1027352