CVE-2015-4324

Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 7.3(0)ZN(0.81), Nexus 3000 devices 7.3(0)ZN(0.81), Nexus 4000 devices 4.1(2)E1(1c), Nexus 7000 devices 7.2(0)N1(0.1), and Nexus 9000 devices 7.3(0)ZN(0.81) allows remote attackers to cause a denial of service (IGMP process restart) via a malformed IGMPv3 packet that is mishandled during memory allocation, aka Bug IDs CSCuv69713, CSCuv69717, CSCuv69723, CSCuv69732, and CSCuv48908.

Published: Aug 19, 2015
Updated: Apr 13, 2023
CVE: CVE-2015-4324
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.1
AV:A/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
cisco / nx-os	7.3(0)zn(0.81)	7.3(0)zn(0.81).x
cisco / nx-os	4.1(2)e1(1c)	4.1(2)e1(1c).x
cisco / nx-os	7.2(0)n1(0.1)	7.2(0)n1(0.1).x

http://tools.cisco.com/security/center/viewAlert.x?alertId=40470
http://www.securityfocus.com/bid/76372
http://www.securitytracker.com/id/1033327

Vulnerability Database

289,599

CVE-2015-4324