Vulnerability CVE-2013-6701


Published: 2013-12-18

Description:
The tNetTaskLimit process on the Transport Node Controller (TNC) on Cisco ONS 15454 devices with software 9.6 and earlier does not properly prioritize health pings, which allows remote attackers to cause a denial of service (watchdog timeout and TNC reset) via a flood of network traffic, aka Bug ID CSCud97155.

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial
Affected software
Cisco -> Ons 15454 
Cisco -> Ons 15454 multiservice transport platform 
Cisco -> Ons 15454 sdh multiservice provisioning platform 
Cisco -> Ons 15454 sonet multiservice provisioning platform 
Cisco -> Cisco ons 15454 system software 
Cisco -> Ons 15454 mspp 
Cisco -> Ons 15454 mstp 
Cisco -> Ons 15454e optical transport platform 

 References:
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6701
http://tools.cisco.com/security/center/viewAlert.x?alertId=32200
http://www.securitytracker.com/id/1029512

Copyright 2024, cxsecurity.com

 

Back to Top