ID de Prueba:	1.3.6.1.4.1.25623.1.0.106858
Categoría:	CISCO
Título:	Cisco NX-OS Software Fibre Channel over Ethernet Denial of Service Vulnerability (cisco-sa-20170607-nxos)
Resumen:	A vulnerability in the Fibre Channel over Ethernet (FCoE); protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker; to cause a denial of service (DoS) condition when an FCoE-related process unexpectedly reloads.
Descripción:	Summary: A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition when an FCoE-related process unexpectedly reloads. Vulnerability Insight: The vulnerability is due to a lack of proper FCoE frame padding validation. An attacker could exploit this vulnerability by sending a stream of crafted FCoE frames to the targeted device. The attacker's server must be directly connected to the FCoE interface on the device that is running Cisco NX-OS Software to exploit this vulnerability. Vulnerability Impact: An exploit could allow the attacker to cause a DoS condition, which would impact FCoE traffic passing through the device. Solution: See the referenced vendor advisory for a solution. CVSS Score: 3.3 CVSS Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-6655 BugTraq ID: 98991 http://www.securityfocus.com/bid/98991 http://www.securitytracker.com/id/1038628
Copyright	Copyright (C) 2017 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.