CVE-2013-1179

Name of the Vulnerable Software and Affected Versions Cisco NX-OS versions 4.x through 5.2(4) Cisco NX-OS versions 6.x before 6.1(1)

Description The issue is related to multiple buffer overflows in the SNMP and License Manager implementations. This allows remote authenticated users to execute arbitrary code via a crafted SNMP request. The estimated number of potentially affected devices is not provided.

Recommendations For Cisco NX-OS versions 4.x through 5.2(4), update to version 5.2(5) or later. For Cisco NX-OS versions 6.x before 6.1(1), update to version 6.1(1) or later. As a temporary workaround, consider disabling the SNMP and License Manager implementations until a patch is available. Restrict access to the vulnerable SNMP endpoint to minimize the risk of exploitation. Avoid using the SNMP request in the affected API endpoint until the issue is resolved.