Cisco Nexus 1000V contains a flaw that may allow a remote denial of service. The issue is triggered when an error occurs when processing 802.1Q tagged packets, which may be exploited by a remote attacker by having a virtual machine send a packet on an vEthernet port to cause a denial of service.

Upgrade to version 4.0(4) SV1(3c) or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

• Security Tracker: 1025030
• CVE ID: 2011-0355 (see also: NVD)
• Secunia Advisory ID: 43084
• Bugtraq ID: 46247
• ISS X-Force ID: 65217
• VUPEN Advisory: ADV-2011-0314 ADV-2011-0315
• Mail List Post: http://lists.vmware.com/pipermail/security-announce/2011/000118.html
• Vendor Specific Advisory URL: http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtj17451 [ Auth Req'd ]
  http://www.cisco.com/en/US/docs/switches/datacenter/nexus1000/sw/4_0_4_s_v_1_3_c/release/notes/n1000v_rn.html
• Vendor Specific News/Changelog Entry: http://www.vmware.com/security/advisories/VMSA-2011-0002.html

• Not Available