CVE-2014-2141CVE-2014-2141

Affected configuration(s):

cpe:/h:cisco:ons_15454
cpe:/o:cisco:cisco_ons_15454_system_software:9.0
cpe:/o:cisco:cisco_ons_15454_system_software:9.1
cpe:/o:cisco:cisco_ons_15454_system_software:9.2
cpe:/o:cisco:cisco_ons_15454_system_software:9.2.1
cpe:/o:cisco:cisco_ons_15454_system_software:9.2.2
cpe:/o:cisco:cisco_ons_15454_system_software:9.3
cpe:/o:cisco:cisco_ons_15454_system_software:9.4
cpe:/o:cisco:cisco_ons_15454_system_software:9.6

Date published: 2014-04-10T00:34:51.053-04:00

Date last modified: 2014-04-10T14:33:03.800-04:00

CVSS Score: 4.0

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2141

Summary: The session-termination functionality on Cisco ONS 15454 controller cards with software 9.6 and earlier does not initialize an unspecified pointer, which allows remote authenticated users to cause a denial of service (card reset) via crafted session-close actions, aka Bug ID CSCug97416.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.