Cisco NX-OS Software Denial of Service Vulnerability (CVE-2015-6260)
Cisco NX-OS Software Denial of Service Vulnerability (CVE-2015-6260)
Release date:
Updated on:
Affected Systems:
Cisco Nexus 6000
Cisco Nexus 5600
Cisco Nexus 5500
Description:
CVE (CAN) ID: CVE-2015-6260
Cisco NX-OS is a data center-Level Operating System.
The Cisco Nexus 5500/5600 platform switch and Cisco Nexus 6000 series switch have security vulnerabilities in the SNMP input packet processor, unauthenticated remote attackers can exploit this vulnerability to cause accidental restart of SNMP applications on affected devices.
<* Source: Cisco
Link: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-n5ksnmp
*>
Suggestion:
Vendor patch:
Cisco
-----
Cisco has released a Security Bulletin (cisco-sa-20160302-n5ksnmp) and patches for this:
Cisco-sa-20160302-n5ksnmp: Cisco NX-OS Software SNMP Packet Denial of Service Vulnerability
Link: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-n5ksnmp
This article permanently updates the link address: