The global-configuration implementation on Cisco ASR 9000 devices with software 5.1.3 and 5.3.0 improperly closes vty sessions after a commit/end operation, which allows local users to cause a denial of service (tmp/*config file creation, memory consumption, and device hang) via unspecified vectors, aka Bug ID CSCut93842.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/viewAlert.x?alertId=39939 | Vendor Advisory |
http://www.securitytracker.com/id/1033259 |
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2015-08-19 18:59
Updated : 2024-02-28 15:21
NVD link : CVE-2015-4277
Mitre link : CVE-2015-4277
CVE.ORG link : CVE-2015-4277
JSON object : View
Products Affected
cisco
- nexus_93120tx
- nx-os
- nexus_9396px
- nexus_9332pq
- nexus_9396tx
- nexus_9372tx
- nexus_9508
- nexus_9516
- nexus_93128tx
- nexus_9504
- nexus_9336pq_aci_spine
- nexus_9372px
CWE
CWE-399
Resource Management Errors