CVE-2007-4292: Multiple memory leaks in Cisco IOS 12.0 through 12.4 allow remote attackers to cause a denial of service (device crash) via a malformed SIP packet, aka (1)…

CVE-2007-4291 [CRITICAL] CWE-399 Voice Vulnerabilities in Cisco IOS and Cisco Unified Communications Manager Voice Vulnerabilities in Cisco IOS and Cisco Unified Communications Manager Multiple voice-related vulnerabilities are identified in Cisco IOS software, one of which is also shared with Cisco Unified Communications Manager. These vulnerabilities pertain to the following protocols or features: Session Initiation Protocol (SIP) Media Gateway Control Protocol (MGCP) Signaling protocols H.323, H.254 Real-time Transport Protocol (RTP) Facsimile reception Cisco has made free software available to address these vulnerabilities for affected customers. Fixed Cisco IOS software listed in the Software Versions and Fixes section contains fixes for all vulnerabilities mentioned in this advisory. There are no workarounds available to mitigate the effects of any of the vulnerabilities apart from

CVE-2007-4292 Voice Vulnerabilities in Cisco IOS and Cisco Unified Communications Manager CVE-2007-4292: Voice Vulnerabilities in Cisco IOS and Cisco Unified Communications Manager Multiple voice-related vulnerabilities are identified in Cisco IOS software, one of which is also shared with Cisco Unified Communications Manager. These vulnerabilities pertain to the following protocols or features: Session Initiation Protocol (SIP) Media Gateway Control Protocol (MGCP) Signaling protocols H.323, H.254 Real-time Transport Protocol (RTP) Facsimile reception Cisco has made free software available to address these vulnerabilities for affected customers. Fixed Cisco IOS software listed in the Software Versions and Fixes section contains fixes for all vulnerabilities mentioned in this advisory. There are no CWE: CWE-399, CWE-94, CWE-399, CWE-94 Bug IDs: CSCeb21064, CSCsb24007, CSCsc6024

CVE-2007-4292 [HIGH] GHSA-847m-hhjw-9pj4: Multiple memory leaks in Cisco IOS 12 Multiple memory leaks in Cisco IOS 12.0 through 12.4 allow remote attackers to cause a denial of service (device crash) via a malformed SIP packet, aka (1) CSCsf11855, (2) CSCeb21064, (3) CSCse40276, (4) CSCse68355, (5) CSCsf30058, (6) CSCsb24007, and (7) CSCsc60249.