Test Kennung:	1.3.6.1.4.1.25623.1.0.105709
Kategorie:	CISCO
Titel:	Cisco NX-OS Software TACACS+ Command Authorization Vulnerability (Cisco-SA-20150202-CVE-2014-8013)
Zusammenfassung:	A vulnerability in the TACACS+ command authorization feature of; Cisco NX-OS Software could allow an authenticated, local attacker to cause the system to reset.
Beschreibung:	Summary: A vulnerability in the TACACS+ command authorization feature of Cisco NX-OS Software could allow an authenticated, local attacker to cause the system to reset. Vulnerability Insight: The vulnerability is due to incorrect processing of very long command-line interface (CLI) commands by the TACACS+ command authorization feature. An attacker could exploit this vulnerability by being locally authenticated and executing a long CLI command that is subject to command authorization. Vulnerability Impact: An exploit could allow the attacker to cause the device to reload. Solution: See the referenced vendor advisory for a solution. CVSS Score: 4.9 CVSS Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2014-8013 BugTraq ID: 72393 http://www.securityfocus.com/bid/72393 Cisco Security Advisory: 20150130 Cisco NX-OS Software TACACS+ Command Authorization Vulnerability http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8013 http://www.securitytracker.com/id/1031685
Copyright	Copyright (C) 2016 Greenbone Networks GmbH

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.