Access Control List Bypass in Cisco Nexus 5000 and 3000 Series
CVE-2011-2581

Currently unrated

Key Information:

Vendor: Cisco
Status: Nx-os; Nexus 5000
Vendor: CVE Published:; 14 September 2011

Summary

The access control list (ACL) implementation in Cisco NX-OS versions 5.0(2) and 5.0(3) on Nexus 5000 series switches and prior to 5.0(3)U1(2a) on Nexus 3000 series switches fails to properly process comments in conjunction with deny statements. This oversight can enable remote attackers to bypass the intended security controls by sending malicious packets, potentially leading to unauthorized access to the device or its network resources.

References

http://www.securitytracker.com/id?1026019

vdb-entryx_refsource_SECTRACK

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

http://secunia.com/advisories/45883

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Sep 14, 2011
Vulnerability Reserved
Jun 27, 2011