Vigil@nce - Cisco NX-OS: VLAN identifier retrieval via SNMP
September 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can query the SNMP server of Cisco NX-OS, in order to
get valid VLAN identifiers.
Impacted products: Cisco Nexus, NX-OS
Severity: 2/4
Creation date: 19/08/2014
DESCRIPTION OF THE VULNERABILITY
The Cisco NX-OS product offers a web service.
However, responses of the SNMP server to unauthenticated queries
vary according to whether the used VLAN identifier is valid.
An attacker can therefore query the SNMP server of Cisco NX-OS, in
order to get valid VLAN identifiers.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-NX-OS-VLAN-identifier-retrieval-via-SNMP-15203