Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-20131106-SIP
HistoryNov 06, 2013 - 4:00 p.m.

Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability

2013-11-0616:00:00
tools.cisco.com
9

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.002

Percentile

53.7%

JSON

A vulnerability exists in the Session Initiation Protocol (SIP) implementation in Cisco IOS Software that could allow an unauthenticated, remote attacker to cause a reload of an affected device or cause memory leaks that may result in system instabilities. To exploit this vulnerability, affected devices must be configured to process SIP messages. Limited Cisco IOS Software releases are affected.

Cisco has released software updates that address this vulnerability.

There are no workarounds for devices that must run SIP; however, mitigations are available to limit exposure to the vulnerability.

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131106-sip[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131106-sip”]

Affected configurations

Vulners
Node
ciscoiosMatch15.1xb
OR
ciscoiosMatch15.1m
OR
ciscoiosMatch15.1gc
OR
ciscoiosMatch15.1\(4\)xb8
OR
ciscoiosMatch15.1\(4\)xb8a
OR
ciscoiosMatch15.1\(4\)m6
OR
ciscoiosMatch15.1\(4\)m5
OR
ciscoiosMatch15.1\(4\)m4
OR
ciscoiosMatch15.1\(4\)gc
OR
ciscoiosMatch15.1\(4\)gc1
VendorProductVersionCPE
ciscoios15.1xbcpe:2.3:o:cisco:ios:15.1xb:*:*:*:*:*:*:*
ciscoios15.1mcpe:2.3:o:cisco:ios:15.1m:*:*:*:*:*:*:*
ciscoios15.1gccpe:2.3:o:cisco:ios:15.1gc:*:*:*:*:*:*:*
ciscoios15.1(4)xb8cpe:2.3:o:cisco:ios:15.1\(4\)xb8:*:*:*:*:*:*:*
ciscoios15.1(4)xb8acpe:2.3:o:cisco:ios:15.1\(4\)xb8a:*:*:*:*:*:*:*
ciscoios15.1(4)m6cpe:2.3:o:cisco:ios:15.1\(4\)m6:*:*:*:*:*:*:*
ciscoios15.1(4)m5cpe:2.3:o:cisco:ios:15.1\(4\)m5:*:*:*:*:*:*:*
ciscoios15.1(4)m4cpe:2.3:o:cisco:ios:15.1\(4\)m4:*:*:*:*:*:*:*
ciscoios15.1(4)gccpe:2.3:o:cisco:ios:15.1\(4\)gc:*:*:*:*:*:*:*
ciscoios15.1(4)gc1cpe:2.3:o:cisco:ios:15.1\(4\)gc1:*:*:*:*:*:*:*

Related

prion 1
nvd 1
cve 1
nessus 1
cvelist 1
securityvulns 1
prion
prion
Design/Logic Flaw
2013-11-08 04:47:00
nvd
nvd
CVE-2013-5553
2013-11-08 04:47:23
cve
cve
CVE-2013-5553
2013-11-08 04:47:23
nessus
nessus
Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability (cisco-sa-20131106-sip)
2013-11-14 00:00:00
cvelist
cvelist
CVE-2013-5553
2013-11-08 02:00:00
securityvulns
securityvulns
Cisco IOS multiple security vulnerabilities
2013-11-18 00:00:00

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.002

Percentile

53.7%

JSON
Related for CISCO-SA-20131106-SIP
prion1nvd1cve1nessus1cvelist1securityvulns1