Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2581

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-2581
Last Modified 05 Oct 2011 10:50:15
Published 14 Sep 2011 12:05:23
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-2581

Summary

The ACL implementation in Cisco NX-OS 5.0(2) and 5.0(3) before 5.0(3)N2(1) on Nexus 5000 series switches, and NX-OS before 5.0(3)U1(2a) on Nexus 3000 series switches, does not properly handle comments in conjunction with deny statements, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances by sending packets, aka Bug IDs CSCto09813 and CSCtr61490.

Vulnerable Systems

Application

  • Cisco Nx-os 5.0%282%29

  • Cisco Nx-os 5.0%283%29

  • Cisco Nx-os 5.0%283%29n1%281%29

  • Cisco Nx-os 5.0%283%29n1%281a%29

  • Cisco Nx-os 5.0%283%29n1%281b%29

  • Cisco Nx-os 5.0%283%29n1%281c%29

  • Cisco Nx-os 5.0%283%29u1%281a%29

  • Cisco Nx-os 5.0%283%29u1%281b%29

  • Cisco Nx-os 5.0%283%29u1%281d%29

  • Cisco Nx-os 5.0%283%29u1%282%29


References

SECTRACK - 1026019

CISCO - 20110907 Cisco Nexus 5000 and 3000 Series Switches Access Control List Bypass Vulnerability

SECUNIA - 45883


Last Updated: 27 May 2016 10:57:02