Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the Internet Group Management Protocol (IGMP) Snooping feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code and gain full control of an affected system. The attacker could also cause an affected system to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to a buffer overflow condition in the IGMP Snooping subsystem. An attacker could exploit this vulnerability by sending crafted IGMP packets to an affected system. An exploit could allow the attacker to execute arbitrary code and gain full control of the affected system or cause the affected system to reload, resulting in a DoS condition. This vulnerability affects Nexus 2000 Series Switches, Nexus 3000 Series Switches, Nexus 3500 Platform Switches, Nexus 3600 Platform Switches, Nexus 5500 Platform Switches, Nexus 5600 Platform Switches, Nexus 6000 Series Switches, Nexus 7000 Series Switches, Nexus 7700 Series Switches, Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode, Nexus 9000 Series Switches in standalone NX-OS mode. Cisco Bug IDs: CSCuv79620, CSCvg71263.
CVSS Information
N/A
Vulnerability Type
内存缓冲区边界内操作的限制不恰当
Vulnerability Title
多款Cisco产品NX-OS Software 缓冲区错误漏洞
Vulnerability Description
Cisco Nexus 2000 Series Switches等都是美国思科(Cisco)公司的不同系列的交换机设备。NX-OS Software是运行在其中的一套交换机使用的数据中心级操作系统软件。 多款Cisco中的NX-OS Software的Internet Group Management Protocol (IGMP)Snooping功能存在缓冲区溢出漏洞。攻击者可通过向受影响的系统发送特制的IGMP数据包利用该漏洞执行任意代码,完全控制受影响的系统或造成拒绝服务(受影响系统重新加载)。以下
CVSS Information
N/A
Vulnerability Type
N/A