CVE-2009-0636: Unspecified vulnerability in Cisco IOS 12.0 through 12.4, when SIP voice services are enabled, allows remote attackers to cause a denial of service (device…

CVE-2009-0636 [HIGH] CWE-399 Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability A vulnerability exists in the Session Initiation Protocol (SIP) implementation in Cisco IOS Software that can be exploited remotely to cause a reload of the Cisco IOS device. Cisco has released software updates that address this vulnerability. There are no workarounds available to mitigate the vulnerability apart from disabling SIP, if the Cisco IOS device does not need to run SIP for VoIP services. However, mitigation techniques are available to help limit exposure to the vulnerability. This advisory is posted at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20090325-sip. Note: The March 25, 2009, Cisco IOS Security Advisory bundled publication

CVE-2009-0636 Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability CVE-2009-0636: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability A vulnerability exists in the Session Initiation Protocol (SIP) implementation in Cisco IOS Software that can be exploited remotely to cause a reload of the Cisco IOS device. Cisco has released software updates that address this vulnerability. There are no CWE: CWE-399, CWE-399 Bug IDs: CSCsu11522, CSCsb25337, CSCsu11522, CSCsu11522, CSCsk64158

CVE-2009-0636 [HIGH] GHSA-hvr2-xgj6-r6c3: Unspecified vulnerability in Cisco IOS 12 Unspecified vulnerability in Cisco IOS 12.0 through 12.4, when SIP voice services are enabled, allows remote attackers to cause a denial of service (device crash) via a valid SIP message.