CVE-2007-0961

CWE-3994 documents4 sources

Severity

7.8HIGH

EPSS

9.9%

top 6.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco ASA 5500 Cisco PIX Firewall Software

Timeline

PublishedFeb 16

Latest updateMay 1

Description

Cisco PIX 500 and ASA 5500 Series Security Appliances 6.x before 6.3(5.115), 7.0 before 7.0(5.2), and 7.1 before 7.1(2.5), and the FWSM 3.x before 3.1(3.24), when the "inspect sip" option is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed SIP packets.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages2 packages

▶NVDcisco/asa_55004 versions+3

▶NVDcisco/pix_firewall_software4 versions+3

Patches

Patch: secunia.com ↗Patch: securitytracker.com ↗Patch: www.cisco.com ↗

🔴Vulnerability Details

GHSA

GHSA-qp89-w7pq-p5cc: Cisco PIX 500 and ASA 5500 Series Security Appliances 6↗2022-05-01

▶

CVEList

CVE-2007-0961: Cisco PIX 500 and ASA 5500 Series Security Appliances 6↗2007-02-16

▶

📋Vendor Advisories

Cisco

Cisco Firewall Services Module, PIX and ASA SIP Message Denial of Service Vulnerability↗2007-02-14

▶