Test ID:	1.3.6.1.4.1.25623.1.0.106657
Category:	CISCO
Title:	Cisco Nexus 9000 Series Switches Telnet Login Denial of Service Vulnerability (cisco-sa-20170315-nss)
Summary:	A vulnerability in the Telnet remote login functionality of; Cisco NX-OS Software running on Cisco Nexus 9000 Series Switches could allow an unauthenticated,; remote attacker to cause a Telnet process used for login to terminate unexpectedly and the login; attempt to fail. There is no impact to user traffic flowing through the device.
Description:	Summary: A vulnerability in the Telnet remote login functionality of Cisco NX-OS Software running on Cisco Nexus 9000 Series Switches could allow an unauthenticated, remote attacker to cause a Telnet process used for login to terminate unexpectedly and the login attempt to fail. There is no impact to user traffic flowing through the device. Vulnerability Insight: The vulnerability is due to incomplete input validation of Telnet packet headers. An attacker could exploit this vulnerability by sending a crafted Telnet packet to an affected system during a remote Telnet login attempt. Vulnerability Impact: A successful exploit could allow the attacker to cause the Telnet process on the affected system to restart unexpectedly, resulting in a denial of service (DoS) condition for the Telnet process. Solution: See the referenced vendor advisory for a solution. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-3878 BugTraq ID: 96927 http://www.securityfocus.com/bid/96927 http://www.securitytracker.com/id/1038047
Copyright	Copyright (C) 2017 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.