Buffer overflow in the Smart Call Home implementation in Cisco NX-OS on Fabric Interconnects in Cisco Unified Computing System 1.4 before 1.4(1i), NX-OS 5.0 before 5.0(3)U2(2) on Nexus 3000 devices, NX-OS 4.1 before 4.1(2)E1(1l) on Nexus 4000 devices, NX-OS 5.x before 5.1(3)N1(1) on Nexus 5000 devices, NX-OS 5.2 before 5.2(3a) on Nexus 7000 devices, and CG-OS CG4 before CG4(2) on Connected 1000 Connected Grid Routers allows remote SMTP servers to execute arbitrary code via a crafted reply, aka Bug IDs CSCtk00695, CSCts56633, CSCts56632, CSCts56628, CSCug14405, and CSCuf61322.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140521-nxos | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Information
Published : 2014-05-25 17:25
Updated : 2018-10-30 09:26
NVD link : CVE-2014-3261
Mitre link : CVE-2014-3261
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
cisco
- nexus_3064t
- nexus_5000
- nexus_3016q
- nexus_7000_9-slot
- nexus_4001i
- nexus_7000_10-slot
- cgr_1240
- unified_computing_system_6120xp_fabric_interconnect
- nexus_5010p_switch
- nexus_3064x
- unified_computing_system_infrastructure_and_unified_computing_system_software
- nexus_5596up
- cg-os
- unified_computing_system_6296up_fabric_interconnect
- nexus_7000_18-slot
- nexus_3548
- nexus_5020
- unified_computing_system_6248up_fabric_interconnect
- nexus_5020p_switch
- unified_computing_system_6140xp_fabric_interconnect
- nx-os
- nexus_7000
- nexus_3048
- nexus_5548p
- nexus_5548up
- cgr_1120
- nexus_5010