Boletines de Vulnerabilidades

Cisco Nexus 5000 Series USB Driver Denial of Service Vulnerability

Información sobre el sistema
   
Software afectado Cisco

Descripción
A vulnerability in the USB driver for Cisco Nexus 5000 Series Switches could allow an unauthenticated, local attacker to cause a denial of service (DoS) condition due to a kernel crash.The vulnerability is due to insufficient handling of USB input parameters. An attacker could exploit this vulnerability by sending crafted USB parameters to be processed by the kernel of an affected device. A successful exploit could allow the attacker to cause a DoS condition on the affected device.Cisco has not

More info:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151204-nexus?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Cisco%20Nexus%205000%20Series%20USB%20Driver%20Denial%20of%20Service%20Vulne

Identificadores estándar
Propiedad Valor
CVE CVE-2015-6394.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2015-12-05

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT