Buffer Overflow Vulnerability in Cisco NX-OS on Various Devices
CVE-2014-3261

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Computing System Infrastructure And Unified Computing System Software; Unified Computing System 6120xp Fabric Interconnect; Unified Computing System 6248up Fabric Interconnect; Unified Computing System 6140xp Fabric Interconnect
Vendor: CVE Published:; 26 May 2014

Summary

A buffer overflow vulnerability exists in the Smart Call Home feature of Cisco NX-OS, which can be exploited by remote SMTP servers to execute arbitrary code through specially crafted replies. This affects a range of Cisco devices, including those in the Unified Computing System and Nexus series. Exploitation can lead to serious security risks, as attackers could gain unauthorized access and control over the affected systems. It is crucial for administrators to apply the appropriate updates and patches to safeguard their network infrastructure.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
May 26, 2014
Vulnerability Reserved
May 7, 2014