CVE-2015-6277

Name of the Vulnerable Software and Affected Versions Cisco NX-OS on Nexus 1000V devices version 5.2(1)SV3(1.4) Cisco NX-OS on Nexus 3000 devices version 7.3(0)ZD(0.47) Cisco NX-OS on Nexus 4000 devices version 4.1(2)E1 Cisco NX-OS on Nexus 9000 devices version 7.3(0)ZD(0.61) Cisco NX-OS on MDS 9000 devices version 7.0(0)HSK(0.353) SAN-OS NX-OS on MDS 9000 devices version 7.0(0)HSK(0.353)

Description The issue is related to the Address Resolution Protocol (ARP) feature in Cisco Nexus Operating System (NX-OS), which allows an unauthenticated, adjacent attacker to cause a partial denial of service (DoS) condition. This is due to improper input validation of the fields in the ARP packet header. An attacker could exploit this by sending a crafted ARP packet from an adjacent network to the affected device, causing the ARP process to unexpectedly restart. The attacker must have access to the same broadcast or collision domain as the targeted device.

Recommendations For Cisco NX-OS on Nexus 1000V devices version 5.2(1)SV3(1.4), update to a fixed release. For Cisco NX-OS on Nexus 3000 devices version 7.3(0)ZD(0.47), update to a fixed release. For Cisco NX-OS on Nexus 4000 devices version 4.1(2)E1, update to a fixed release. For Cisco NX-OS on Nexus 9000 devices version 7.3(0)ZD(0.61), update to a fixed release. For Cisco NX-OS on MDS 9000 devices version 7.0(0)HSK(0.353), update to a fixed release. For SAN-OS NX-OS on MDS 9000 devices version 7.0(0)HSK(0.353), update to a fixed release.