Vulnerabilities > CVE-2015-0775 - Resource Management Errors vulnerability in Cisco MDS 9000 Nx-Os, Nexus 1000V and Nx-Os

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

cisco

CWE-399

NVD

Published: 2015-06-12

Updated: 2017-01-04

Summary

The banner (aka MOTD) implementation in Cisco NX-OS 4.1(2)E1(1f) on Nexus 4000 devices, 5.2(1)SV3(2.1) on Nexus 1000V devices, 6.0(2)N2(2) on Nexus 5000 devices, 6.2(11) on MDS 9000 devices, 6.2(12) on Nexus 7000 devices, 7.0(3) on Nexus 9000 devices, and 7.2(0)ZN(99.67) on Nexus 3000 devices allows remote attackers to cause a denial of service (login process reset) via an unspecified terminal-session request during TELNET session setup, aka Bug IDs CSCuo10554, CSCuu75466, CSCuu75471, CSCuu75484, CSCuu75498, CSCuu77170, and CSCuu77182.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco NX OS 4.1\(2\)E1\(1F\) Cisco NX OS 7.2\(0\)Zn\(99.67\) Cisco NX OS 6.0\(2\)N2\(2\) Cisco NX OS 6.2\(12\) Cisco MDS 9000 NX OS 6.2\(11\)	5
Hardware	Cisco Cisco Nexus 4001I - Cisco Nexus 3016 - Cisco Nexus 3048 - Cisco Nexus 3064 - Cisco Nexus 31128Pq * Cisco Nexus 3132Q - Cisco Nexus 3164Q - Cisco Nexus 3172 - Cisco Nexus 3232C - Cisco Nexus 3264Q - Cisco Nexus 3524 - Cisco Nexus 3548 - Cisco Nexus 7000 - Cisco Nexus 7700 - Cisco Nexus 93120Tx - Cisco Nexus 93128Tx - Cisco Nexus 9332Pq - Cisco Nexus 9336Pq ACI Spine - Cisco Nexus 9372Px - Cisco Nexus 9372Tx - Cisco Nexus 9396Px - Cisco Nexus 9396Tx - Cisco Nexus 9504 - Cisco Nexus 9508 - Cisco Nexus 9516 - Cisco Nexus 1000V -	26

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References