Vulnerability CVE-2011-0355 - CERT Civis.Net

Vulnerability Name:

CVE-2011-0355 (CCN-65217)

Assigned:

2011-02-04

Published:

2011-02-04

Updated:

2018-10-10

Summary:

Cisco Nexus 1000V Virtual Ethernet Module (VEM) 4.0(4) SV1(1) through SV1(3b), as used in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, does not properly handle dropped packets, which allows guest OS users to cause a denial of service (ESX or ESXi host OS crash) by sending an 802.1Q tagged packet over an access vEthernet port, aka Cisco Bug ID CSCtj17451.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
5.8 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2011-0355

Source: MLIST
Type: UNKNOWN
[security-announce] 20110207 VMSA-2011-0002 Cisco Nexus 1000V VEM updates address denial of service in VMware ESX/ESXi

Source: CCN
Type: SA43084
Cisco Nexus 1000V Virtual Switch 802.1Q Tagged Packet Denial of Service

Source: SECUNIA
Type: Vendor Advisory
43084

Source: SREASON
Type: UNKNOWN
8090

Source: SECTRACK
Type: UNKNOWN
1025030

Source: CCN
Type: Cisco Web Site
Cisco Nexus 1000V Release Notes, Release 4.0(4) SV1(3c)

Source: CONFIRM
Type: UNKNOWN
http://www.cisco.com/en/US/docs/switches/datacenter/nexus1000/sw/4_0_4_s_v_1_3_c/release/notes/n1000v_rn.html

Source: OSVDB
Type: UNKNOWN
70837

Source: CCN
Type: OSVDB ID: 70837
Cisco Nexus 1000V Virtual Switch 802.1Q Tagged Packet Remote DoS

Source: BUGTRAQ
Type: UNKNOWN
20110208 VMSA-2011-0002 Cisco Nexus 1000V VEM updates address denial of service in VMware ESX/ESXi

Source: BID
Type: UNKNOWN
46247

Source: CCN
Type: BID-46247
Cisco Nexus 1000V VEM Denial of Service Vulnerability

Source: CONFIRM
Type: Vendor Advisory
http://www.vmware.com/security/advisories/VMSA-2011-0002.html

Source: VUPEN
Type: Vendor Advisory
ADV-2011-0314

Source: VUPEN
Type: Vendor Advisory
ADV-2011-0315

Source: XF
Type: UNKNOWN
cisco-nexus-packets-dos(65217)

Source: XF
Type: UNKNOWN
cisco-nexus-packets-dos(65217)

Vulnerable Configuration:

Configuration 1:

cpe:/a:cisco:1000v_virtual_ethernet_module_(vem):4.0(4):sv1(1):*:*:*:*:*:*

OR cpe:/a:cisco:1000v_virtual_ethernet_module_(vem):4.0(4):sv1(2):*:*:*:*:*:*

OR cpe:/a:cisco:1000v_virtual_ethernet_module_(vem):4.0(4):sv1(3):*:*:*:*:*:*

OR cpe:/a:cisco:1000v_virtual_ethernet_module_(vem):4.0(4):sv1(3a):*:*:*:*:*:*

OR cpe:/a:cisco:1000v_virtual_ethernet_module_(vem):4.0(4):sv1(3b):*:*:*:*:*:*

AND

cpe:/a:vmware:esx:4.0:*:*:*:*:*:*:*

OR cpe:/a:vmware:esx:4.1:*:*:*:*:*:*:*

OR cpe:/a:vmware:esxi:4.0:*:*:*:*:*:*:*

OR cpe:/a:vmware:esxi:4.1:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:vmware:esxi:4.0:*:*:*:*:*:*:*

OR cpe:/a:vmware:esx:4.0:*:*:*:*:*:*:*

OR cpe:/a:vmware:esxi:4.1:*:*:*:*:*:*:*

OR cpe:/a:vmware:esx:4.1:*:*:*:*:*:*:*

Denotes that component is vulnerable