Cisco Open Network Environment Platform Unvalidated Pointer (CSCui51551)

This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.

Synopsis :

The remote device is missing a vendor-supplied security patch.

Description :

A vulnerability in the Open Network Environment Platform (ONEP) could
allow an authenticated, remote attacker to cause the network element
to reload.

The vulnerability is due to insufficient pointer validation. An
attacker could exploit this vulnerability by sending a crafted packet
to an ONEP-enabled network element. Successful exploitation could
allow the attacker to cause the network element to reload.

See also :

Solution :

Apply the patch referenced in Cisco bug ID CSCui51551.

Risk factor :

Medium / CVSS Base Score : 6.3
CVSS Temporal Score : 5.2
Public Exploit Available : true

Family: CISCO

Nessus Plugin ID: 70399 ()

Bugtraq ID: 62403

CVE ID: CVE-2013-5496

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now