CVE-2009-0630: The (1) Cisco Unified Communications Manager Express; (2) SIP Gateway Signaling Support Over Transport Layer Security (TLS) Transport; (3) Secure Signaling and…

CVE-2009-0630 [HIGH] CWE-399 Cisco IOS Software Multiple Features IP Sockets Vulnerability Cisco IOS Software Multiple Features IP Sockets Vulnerability A vulnerability in the handling of IP sockets can cause devices to be vulnerable to a denial of service attack when any of several features of Cisco IOS? Software are enabled. A sequence of specially crafted TCP/IP packets could cause any of the following results: The configured feature may stop accepting new connections or sessions. The memory of the device may be consumed. The device may experience prolonged high CPU utilization. The device may reload. Cisco has released software updates that address this vulnerability. Several mitigation strategies are outlined in the "Workarounds" section of this advisory. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa

CVE-2009-0630 Cisco IOS Software Multiple Features IP Sockets Vulnerability CVE-2009-0630: Cisco IOS Software Multiple Features IP Sockets Vulnerability A vulnerability in the handling of IP sockets can cause devices to be vulnerable to a denial of service attack when any of several features of Cisco IOS ? Software are enabled. A sequence of specially crafted TCP/IP packets could cause any of the following results: The configured feature may stop accepting new connections or sessions. The memory of the device may be consumed. The device may experience prolonged high CPU utilization. The device may reload. Cisco has released software updates that address this vulnerability. Several mitigation strategies are outlined in the " CWE: CWE-399, CWE-399 Bug IDs: CSCsm27071, CSCsm27071

CVE-2009-0630 [HIGH] GHSA-jc4c-fgp6-8m4x: The (1) Cisco Unified Communications Manager Express; (2) SIP Gateway Signaling Support Over Transport Layer Security (TLS) Transport; (3) Secure Sign The (1) Cisco Unified Communications Manager Express; (2) SIP Gateway Signaling Support Over Transport Layer Security (TLS) Transport; (3) Secure Signaling and Media Encryption; (4) Blocks Extensible Exchange Protocol (BEEP); (5) Network Admission Control HTTP Authentication Proxy; (6) Per-user URL Redirect for EAPoUDP, Dot1x, and MAC Authentication Bypass; (7) Distributed Director with HTTP Redirects; and (8) TCP DNS features in Cisco IOS 12.0 through 12.4 do not properly handle IP sockets, which allows remote attackers to cause a denial of service (outage or resource consumption) via a series of crafted TCP packets.