Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities

Multiple vulnerabilities exist in the Session Initiation Protocol SIP implementation in Cisco IOS® Software that could allow an unauthenticated, remote attacker to cause a reload of an affected device when SIP operation is enabled. Cisco has released software updates that address these...

CVE-2010-0574

CVE-2010-0574 corresponds to an IKE DoS vulnerability in Cisco Wireless LAN Controller (WLC) software. The issue allows remote attackers to cause a device reload by sending crafted IKE packets. Affected releases include 3.2.x before 3.2.215.0; 4.1 and 4.2 before 4.2.205.0 (and 4.1M/4.2M before 4....

Vulnerabilities in SNMP Message Processing - Cisco Systems

Cisco Internetwork Operating System IOS Software release trains 12.0S, 12.1E, 12.2, 12.2S, 12.3, 12.3B and 12.3T may contain a vulnerability in processing SNMP requests which, if exploited, could cause the device to reload. The vulnerability is only present in certain IOS releases on Cisco router...

Cisco IOS Software Zone-Based Policy Firewall Vulnerability - Cisco Systems

Cisco IOS devices that are configured with Cisco IOS Zone-Based Policy Firewall Session Initiation Protocol SIP inspection are vulnerable to denial of service DoS attacks when processing a specific SIP transit packet. Exploitation of the vulnerability could result in a reload of the affected...

Cisco Unified Communications Manager Express Denial of Service Vulnerabilities (cisco-sa-20100324-cucme)

Devices running Cisco IOS Software and configured for Cisco Unified Communications Manager Express CME or Cisco Unified Survivable Remote Site Telephony SRST operation are affected by two denial of service vulnerabilities that may result in a device reload if successfully exploited. The...

Cisco IOS Misformed BGP Packet Causes Reload - Cisco Systems

A Cisco device running IOS Border Gateway Protocol BGP is vulnerable to a Denial of Service DoS attack from a malformed BGP packet. Only devices with either the command bgp log-neighbor-changes configured or the command snmp-server enable traps bgp are vulnerable. The BGP protocol is not enabled ...

Multiple Cisco IOS Session Initiation Protocol Denial of Service Vulnerabilities

Multiple vulnerabilities exist in the Session Initiation Protocol SIP implementation in Cisco IOS that can be exploited remotely to trigger a memory leak or to cause a reload of the IOS device. Cisco has released free software updates that address these vulnerabilities. Fixed Cisco IOS software...

Cisco IOS Software Crafted TCP Packet Denial of Service Vulnerability (cisco-sa-20100324-tcp)

Cisco IOS Software is affected by a denial of service vulnerability that may allow a remote unauthenticated attacker to cause an affected device to reload or hang. The vulnerability may be triggered by a TCP segment containing crafted TCP options that is received during the TCP session...

Cisco IOS Secure Shell Denial of Service Vulnerabilities - Cisco Systems

The Secure Shell server SSH implementation in Cisco IOS contains multiple vulnerabilities that allow unauthenticated users the ability to generate a spurious memory access error or, in certain cases, reload the device. The IOS SSH server is an optional service that is disabled by default, but its...

SIP Packets Reload IOS Devices with support for SIP

Cisco devices running an affected version of Internetwork Operating System IOS which supports Session Initiation Protocol SIP are affected by a vulnerability that may lead to a reload of the device when receiving a specific series of packets destined to port 5060. This issue is compounded by a...

CVE-2010-2822

Unspecified vulnerability in the RTSP inspection feature on the Cisco Application Control Engine ACE Module with software before A23.2 for Catalyst 6500 series switches and 7600 series routers, and the Cisco Application Control Engine ACE 4710 appliance with software before A32.6, allows remote...

Information disclosure

Unspecified vulnerability in the SIP inspection feature on the Cisco Application Control Engine ACE Module with software A21.x before A21.6, A22.x before A22.3, and A23.x before A23.1 for Catalyst 6500 series switches and 7600 series routers, and the Cisco Application Control Engine ACE 4710...

CVE-2010-2825

CVE-2010-2825 affects Cisco ACE (Application Control Engine) Module and ACE 4710, exposing a SIP inspection DoS that can trigger a device reload when processing crafted SIP packets over TCP or UDP. Affected software lines include ACE Module A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), A2(3.x) ...

CVE-2010-2815

Unspecified vulnerability in the Transport Layer Security TLS implementation on Cisco Adaptive Security Appliances ASA 5500 series devices with software 7.2 before 7.25, 8.0 before 8.05.15, 8.1 before 8.12.44, 8.2 before 8.22.17, and 8.3 before 8.31.6 and Cisco PIX Security Appliances 500 series...

CVE-2010-1578

Unspecified vulnerability in the SunRPC inspection feature on Cisco Adaptive Security Appliances ASA 5500 series devices with software 7.2 before 7.25, 8.0 before 8.05.19, 8.1 before 8.12.47, and 8.2 before 8.22 and Cisco PIX Security Appliances 500 series devices allows remote attackers to cause...

Design/Logic Flaw

Unspecified vulnerability in the SunRPC inspection feature on the Cisco Firewall Services Module FWSM with software 3.1 before 3.117.2, 3.2 before 3.216.1, 4.0 before 4.010.1, and 4.1 before 4.11.1 for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial...

Code injection

Unspecified vulnerability in the Transport Layer Security TLS implementation on Cisco Adaptive Security Appliances ASA 5500 series devices with software 7.2 before 7.25, 8.0 before 8.05.15, 8.1 before 8.12.44, 8.2 before 8.22.17, and 8.3 before 8.31.6 and Cisco PIX Security Appliances 500 series...

Design/Logic Flaw

Unspecified vulnerability in the IKE implementation on Cisco Adaptive Security Appliances ASA 5500 series devices with software 7.0 before 7.08.11, 7.1 and 7.2 before 7.25, 8.0 before 8.05.15, 8.1 before 8.12.44, 8.2 before 8.22.10, and 8.3 before 8.31.1 and Cisco PIX Security Appliances 500 seri...

CVE-2010-2817

Unspecified vulnerability in the IKE implementation on Cisco Adaptive Security Appliances ASA 5500 series devices with software 7.0 before 7.08.11, 7.1 and 7.2 before 7.25, 8.0 before 8.05.15, 8.1 before 8.12.44, 8.2 before 8.22.10, and 8.3 before 8.31.1 and Cisco PIX Security Appliances 500 seri...

CVE-2010-2820

Unspecified vulnerability in the SunRPC inspection feature on the Cisco Firewall Services Module FWSM with software 3.1 before 3.117.2, 3.2 before 3.216.1, 4.0 before 4.010.1, and 4.1 before 4.11.1 for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial...