Cisco Nexus 1000V Virtual Ethernet Module (VEM) 4.0(4) SV1(1) through SV1(3b), as used in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, does not properly handle dropped packets, which allows guest OS users to cause a denial of service (ESX or ESXi host OS crash) by sending an 802.1Q tagged packet over an access vEthernet port, aka Cisco Bug ID CSCtj17451.
References
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 01:23
Type | Values Removed | Values Added |
---|---|---|
References | () http://lists.vmware.com/pipermail/security-announce/2011/000118.html - | |
References | () http://secunia.com/advisories/43084 - Vendor Advisory | |
References | () http://securityreason.com/securityalert/8090 - | |
References | () http://securitytracker.com/id?1025030 - | |
References | () http://www.cisco.com/en/US/docs/switches/datacenter/nexus1000/sw/4_0_4_s_v_1_3_c/release/notes/n1000v_rn.html - | |
References | () http://www.osvdb.org/70837 - | |
References | () http://www.securityfocus.com/archive/1/516259/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/46247 - | |
References | () http://www.vmware.com/security/advisories/VMSA-2011-0002.html - Vendor Advisory | |
References | () http://www.vupen.com/english/advisories/2011/0314 - Vendor Advisory | |
References | () http://www.vupen.com/english/advisories/2011/0315 - Vendor Advisory | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/65217 - |
Information
Published : 2011-02-17 18:00
Updated : 2024-11-21 01:23
NVD link : CVE-2011-0355
Mitre link : CVE-2011-0355
CVE.ORG link : CVE-2011-0355
JSON object : View
Products Affected
vmware
- esx
- esxi
cisco
- 1000v_virtual_ethernet_module_\(vem\)
CWE
CWE-399
Resource Management Errors