CVE-2009-2870 (HIGH)

Vendor	Product	Version range	Fixed in
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—

Cisco

Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability

vendor_cisco·2009-09-23·CVSS 7.8

CVE-2009-2870 [HIGH] CWE-399 Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability A vulnerability exists in the Session Initiation Protocol (SIP) implementation in Cisco IOS® Software that could allow an unauthenticated attacker to cause a denial of service (DoS) condition on an affected device when the Cisco Unified Border Element feature is enabled. Cisco has released software updates that address this vulnerability. For devices that must run SIP there are no workarounds; however, mitigations are available to limit exposure of the vulnerability. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20090923-sip. Note: The September 23, 2009, Cisco IOS Security Advisory bundled publication includes eleven Security Advisories. T

Cisco

Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability

vendor_cisco

CVE-2009-2870 Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability CVE-2009-2870: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability A vulnerability exists in the Session Initiation Protocol (SIP) implementation in Cisco IOS � Software that could allow an unauthenticated attacker to cause a denial of service (DoS) condition on an affected device when the Cisco Unified Border Element feature is enabled. Cisco has released software updates that address this vulnerability. For devices that must run SIP there are no CWE: CWE-399, CWE-399 Bug IDs: CSCsx25880, CSCsx25880

GHSA

GHSA-r78g-mr95-6qvw: Unspecified vulnerability in Cisco IOS 12

ghsa_unreviewed·2022-05-02

CVE-2009-2870 [HIGH] GHSA-r78g-mr95-6qvw: Unspecified vulnerability in Cisco IOS 12 Unspecified vulnerability in Cisco IOS 12.2 through 12.4, when the Cisco Unified Border Element feature is enabled, allows remote attackers to cause a denial of service (device reload) via crafted SIP messages, aka Bug ID CSCsx25880.

CVE-2009-2870: Unspecified vulnerability in Cisco IOS 12.2 through 12.4, when the Cisco Unified Border Element feature is enabled, allows remote attackers to cause a denial…

Affected