Vulnerabilities > CVE-2016-1465 - Resource Management Errors vulnerability in Cisco Nx-Os
Attack vector
ADJACENT_NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
Cisco Nexus 1000v Application Virtual Switch (AVS) devices before 5.2(1)SV3(1.5i) allow remote attackers to cause a denial of service (ESXi hypervisor crash and purple screen) via a crafted Cisco Discovery Protocol packet that triggers an out-of-bounds memory access, aka Bug ID CSCuw57985.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160727-avs
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160727-avs
- http://www.securityfocus.com/bid/92154
- http://www.securityfocus.com/bid/92154
- http://www.securitytracker.com/id/1036469
- http://www.securitytracker.com/id/1036469