Guest

Preview Tool

Cisco Bug: CSCuo10554 - Cisco Nexus 5000 Message of the Day (MOTD) Telnet Login Vulnerability

Last Modified

Feb 18, 2018

Products (7)

  • Cisco Nexus 5000 Series Switches
  • Cisco Nexus 5548P Switch
  • Cisco Nexus 5596UP Switch
  • Cisco Nexus 6004 Switch
  • Cisco Nexus 6001 Switch
  • Cisco Nexus 5548UP Switch
  • Cisco Nexus 5596T Switch

Known Affected Releases

6.0(2)N2(2)

Description (partial)

Symptom:
A vulnerability in Message of the Day (MOTD) or banner functionality of the NX-OS 
operating system could allow an unauthenticated, remote attacker to cause the login 
process to reset .

The vulnerability is due to the MOTD display handling when a certain type of terminal 
session is requested via telnet. An attacker could exploit this vulnerability by repeatedly 
issuing a telnet session to the NX-OS device and causing the login process to reset. An 
exploit could allow the attacker to cause the login process of the NX-OS device to reset repeatedly.

Conditions:
Device running with default configuration running an affected version of software.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.