Denial of Service Vulnerability in Cisco NX-OS on MDS and Nexus 7000 Devices

CVE-2014-2201

Summary

A vulnerability exists in Cisco NX-OS that allows remote attackers to exploit the Message Transfer Service (MTS) by sending a significant volume of specially crafted traffic. This can lead to a NULL pointer dereference, resulting in a denial of service through kernel panic. The affected products include MDS 9000 devices running versions before 6.2(7) and Nexus 7000 devices before 6.0(2). Organizations using these devices are encouraged to apply the latest updates to mitigate this risk.

References