Computer Security Incident Response Team of Mauritius

Vulnerability in Cisco Nexus 5000, 6000, and 7000 Series Switches

Severity Rating: Medium

System Affected:

Cisco Nexus 5000, 6000, and 7000 Series Switches

Description:

A vulnerability was identified in Cisco Nexus 5000, 6000, and 7000 Series Switches that could allow a remote user to cause the affected device to reload.

The vulnerability exists due to improper processing of crafted IS-IS protocol packets. A remote user on the local network can send specially crafted Intermediate System-to-Intermediate System (IS-IS) protocol packets to cause a reload of the affected device.

Source:

Solution

Users are advised to apply updates.

More information is available on:

Cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170118-nexus

Vendor Information

Cisco

https://www.cisco.com/c/en/us/index.html

CVE Information

CVE-2017-3804

References

Security Tracker

http://securitytracker.com/id/1037658

Cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170118-nexus

Contact Information

E-mail: contact@cert.ncb.mu

Postal address
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street
Port Louis

Top Link Bar

VN-2017-15

Subscribe to newsletter