Buffer overflow in Cisco Nexus_1000v

CVE-2013-1210

Array index error in the Virtual Ethernet Module (VEM) kernel driver for VMware ESXi in Cisco NX-OS on the Nexus 1000V, when STUN debugging is enabled, allows remote attackers to cause a denial of service (ESXi crash and purple screen of d…

Vulnerability class: Buffer Overflow

EPSS: 0.007 (72.7th percentile) — read the EPSS interpretation.

Affected products

Cisco Nexus_1000v
Cisco Nx-os
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

20130528 Cisco Nexus 1000V ESXi Hypervisor Denial of Service Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)