The HSRP implementation in Cisco NX-OS 6.2(2a) and earlier allows remote attackers to bypass authentication and cause a denial of service (group-member state modification and traffic blackholing) via malformed HSRP packets, aka Bug ID CSCup11309.
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Nx-os | Cisco | * | 6.2(2a) (including) |
| Nx-os | Cisco | 4.1.(2) (including) | 4.1.(2) (including) |
| Nx-os | Cisco | 4.1.(3) (including) | 4.1.(3) (including) |
| Nx-os | Cisco | 4.1.(4) (including) | 4.1.(4) (including) |
| Nx-os | Cisco | 4.1.(5) (including) | 4.1.(5) (including) |
| Nx-os | Cisco | 4.2(3) (including) | 4.2(3) (including) |
| Nx-os | Cisco | 4.2(4) (including) | 4.2(4) (including) |
| Nx-os | Cisco | 4.2(6) (including) | 4.2(6) (including) |
| Nx-os | Cisco | 4.2(8) (including) | 4.2(8) (including) |
| Nx-os | Cisco | 4.2.(2a) (including) | 4.2.(2a) (including) |
| Nx-os | Cisco | 5.0(2a) (including) | 5.0(2a) (including) |
| Nx-os | Cisco | 5.0(3) (including) | 5.0(3) (including) |
| Nx-os | Cisco | 5.0(5) (including) | 5.0(5) (including) |
| Nx-os | Cisco | 5.1(1a) (including) | 5.1(1a) (including) |
| Nx-os | Cisco | 5.1(3) (including) | 5.1(3) (including) |
| Nx-os | Cisco | 5.1(4) (including) | 5.1(4) (including) |
| Nx-os | Cisco | 5.1(5) (including) | 5.1(5) (including) |
| Nx-os | Cisco | 5.1(6) (including) | 5.1(6) (including) |
| Nx-os | Cisco | 5.2(1) (including) | 5.2(1) (including) |
| Nx-os | Cisco | 5.2(3a) (including) | 5.2(3a) (including) |
| Nx-os | Cisco | 5.2(4) (including) | 5.2(4) (including) |
| Nx-os | Cisco | 5.2(5) (including) | 5.2(5) (including) |
| Nx-os | Cisco | 5.2(7) (including) | 5.2(7) (including) |
| Nx-os | Cisco | 5.2(9) (including) | 5.2(9) (including) |
| Nx-os | Cisco | 6.0(1) (including) | 6.0(1) (including) |
| Nx-os | Cisco | 6.0(2) (including) | 6.0(2) (including) |
| Nx-os | Cisco | 6.0(3) (including) | 6.0(3) (including) |
| Nx-os | Cisco | 6.0(4) (including) | 6.0(4) (including) |
| Nx-os | Cisco | 6.1(1) (including) | 6.1(1) (including) |
| Nx-os | Cisco | 6.1(2) (including) | 6.1(2) (including) |
| Nx-os | Cisco | 6.1(3) (including) | 6.1(3) (including) |
| Nx-os | Cisco | 6.1(4) (including) | 6.1(4) (including) |
| Nx-os | Cisco | 6.1(4a) (including) | 6.1(4a) (including) |
| Nx-os | Cisco | 6.2(2) (including) | 6.2(2) (including) |