PT-2013-2958 · Cisco+1 · Cisco Unified Computing System (Ucs) C-Series Rack Server+1

Published

2013-08-01

Updated

2013-10-07

CVE-2013-1190

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Cisco Unified Computing System (UCS) C-Series Rack Server component version 1.4

Description The issue allows remote attackers to cause a denial of service, potentially leading to an Integrated Management Controller reboot or hang, by sending crafted packets to unrestricted inbound access ports. This can be demonstrated using tools like nmap.

Recommendations For Cisco Unified Computing System (UCS) C-Series Rack Server component version 1.4, restrict inbound access to ports to prevent remote attackers from causing a denial of service.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2013-1190

Affected Products

Cisco Unified Computing System (Ucs) C-Series Rack Server

Nmap

PT-2013-2958 · Cisco+1 · Cisco Unified Computing System (Ucs) C-Series Rack Server+1

CVE-2013-1190

Weakness Enumeration

Related Identifiers

Affected Products

References · 2