Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2141

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2014-2141
Last Modified 10 Apr 2014 02:33:03
Published 10 Apr 2014 12:34:51
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2014-2141

Summary

The session-termination functionality on Cisco ONS 15454 controller cards with software 9.6 and earlier does not initialize an unspecified pointer, which allows remote authenticated users to cause a denial of service (card reset) via crafted session-close actions, aka Bug ID CSCug97416.

Vulnerable Systems

Operating System

  • Cisco Ons 15454 System Software 9.0

  • Cisco Ons 15454 System Software 9.1

  • Cisco Ons 15454 System Software 9.2

  • Cisco Ons 15454 System Software 9.2.1

  • Cisco Ons 15454 System Software 9.2.2

  • Cisco Ons 15454 System Software 9.3

  • Cisco Ons 15454 System Software 9.4

  • Cisco Ons 15454 System Software 9.6


References

CONFIRM - http://tools.cisco.com/security/center/viewAlert.x?alertId=33682

CISCO - 20140407 Cisco ONS 15454 Controller Card Denial of Service Vulnerability


Last Updated: 27 May 2016 11:04:52