Release date:
Updated on:
Affected Systems:
Cisco NX-OS
Description:
--------------------------------------------------------------------------------
Bugtraq id: 64670
CVE (CAN) ID: CVE-2013-6982
Cisco NX-OS is a data center-level operating system that represents a modular design, always-on and maintainability.
The Border Gateway Protocol (BGP) feature of the Cisco NX-OS has a security vulnerability that allows unauthenticated remote attackers to reset all BGP sessions on the device after successful exploitation. This vulnerability is caused by the failure to properly process specially crafted bgp update messages.
<* Source: Cisco
Link: http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6982
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Cisco
-----
Cisco has released a Security Bulletin (CVE-2013-6982) and patches for this:
CVE-2013-6982: Cisco NX-OS Software Crafted Border Gateway Protocol Update Message Denial of Service Vulnerability
Link: http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6982