CVE-2014-3330 Information

Description

Cisco NX-OS 6.1(2)I2(1) on Nexus 9000 switches does not properly process packet-drop policy checks for logged packets which allows remote attackers to bypass intended access restrictions via a flood of packets matching a policy that contains the log keyword aka Bug ID CSCuo02489.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3330 http://tools.cisco.com/security/center/viewAlert.x?alertId=35181 http://www.securityfocus.com/bid/69057 http://www.securitytracker.com/id/1030676 https://exchange.xforce.ibmcloud.com/vulnerabilities/95122