CVE-2011-0355 - Cisco Nexus 1000V Virtual Ethernet Module (VEM) 4.0(4) SV1(1) through SV1(3b), as used in VMware ESX

CVE-2011-0355

Summary

Cisco Nexus 1000V Virtual Ethernet Module (VEM) 4.0(4) SV1(1) through SV1(3b), as used in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, does not properly handle dropped packets, which allows guest OS users to cause a denial of service (ESX or ESXi host OS crash) by sending an 802.1Q tagged packet over an access vEthernet port, aka Cisco Bug ID CSCtj17451.

References

Vulnerable Configurations

cpe:2.3:a:cisco:1000v_virtual_ethernet_module_\(vem\):4.0\(4\):sv1\(1\):*:*:*:*:*:*
cpe:2.3:a:cisco:1000v_virtual_ethernet_module_\(vem\):4.0\(4\):sv1\(1\):*:*:*:*:*:*
cpe:2.3:a:cisco:1000v_virtual_ethernet_module_\(vem\):4.0\(4\):sv1\(2\):*:*:*:*:*:*
cpe:2.3:a:cisco:1000v_virtual_ethernet_module_\(vem\):4.0\(4\):sv1\(2\):*:*:*:*:*:*
cpe:2.3:a:cisco:1000v_virtual_ethernet_module_\(vem\):4.0\(4\):sv1\(3\):*:*:*:*:*:*
cpe:2.3:a:cisco:1000v_virtual_ethernet_module_\(vem\):4.0\(4\):sv1\(3\):*:*:*:*:*:*
cpe:2.3:a:cisco:1000v_virtual_ethernet_module_\(vem\):4.0\(4\):sv1\(3a\):*:*:*:*:*:*
cpe:2.3:a:cisco:1000v_virtual_ethernet_module_\(vem\):4.0\(4\):sv1\(3a\):*:*:*:*:*:*
cpe:2.3:a:cisco:1000v_virtual_ethernet_module_\(vem\):4.0\(4\):sv1\(3b\):*:*:*:*:*:*
cpe:2.3:a:cisco:1000v_virtual_ethernet_module_\(vem\):4.0\(4\):sv1\(3b\):*:*:*:*:*:*
cpe:2.3:a:vmware:esx:4.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:esx:4.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:esx:4.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:esx:4.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:esxi:4.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:esxi:4.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:esxi:4.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:esxi:4.1:*:*:*:*:*:*:*

CVSS

Base:	7.8 (as of 10-10-2018 - 20:09)
Impact:
Exploitability:

CWE

CWE-399

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:C

refmap via4

bid	46247
bugtraq	20110208 VMSA-2011-0002 Cisco Nexus 1000V VEM updates address denial of service in VMware ESX/ESXi
confirm	http://www.cisco.com/en/US/docs/switches/datacenter/nexus1000/sw/4_0_4_s_v_1_3_c/release/notes/n1000v_rn.html http://www.vmware.com/security/advisories/VMSA-2011-0002.html
mlist	[security-announce] 20110207 VMSA-2011-0002 Cisco Nexus 1000V VEM updates address denial of service in VMware ESX/ESXi
osvdb	70837
sectrack	1025030
secunia	43084
sreason	8090
vupen	ADV-2011-0314 ADV-2011-0315
xf	cisco-nexus-packets-dos(65217)

Last major update

10-10-2018 - 20:09

Published

17-02-2011 - 18:00

Last modified

10-10-2018 - 20:09