CVE-2010-0579
published 2010-03-25CVE-2010-0579: The SIP implementation in Cisco IOS 12.3 and 12.4 allows remote attackers to cause a denial of service (device reload) via a malformed SIP message, aka Bug ID…
high7.8CVSS 3.1
AVNACLAuNCNINAC
The SIP implementation in Cisco IOS 12.3 and 12.4 allows remote attackers to cause a denial of service (device reload) via a malformed SIP message, aka Bug ID CSCtb93416, the "SIP Message Handling Denial of Service Vulnerability."
Affected
44 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
GHSA
GHSA-j4cp-47vm-442g: The SIP implementation in Cisco IOS 12
ghsa_unreviewed·2022-05-02
CVE-2010-0579 [HIGH] GHSA-j4cp-47vm-442g: The SIP implementation in Cisco IOS 12
The SIP implementation in Cisco IOS 12.3 and 12.4 allows remote attackers to cause a denial of service (device reload) via a malformed SIP message, aka Bug ID CSCtb93416, the "SIP Message Handling Denial of Service Vulnerability."
Cisco
Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities
vendor_cisco·2010-03-24·CVSS 10.0
CVE-2010-0579 [CRITICAL] CWE-399 Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities
Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities
Multiple vulnerabilities exist in the Session Initiation Protocol (SIP)
implementation in Cisco IOS® Software that could
allow an unauthenticated, remote attacker to cause a reload of an affected
device when SIP operation is enabled. Remote code execution may also be
possible.
Cisco has released software updates that address these vulnerabilities. For devices that must run SIP there are no workarounds;
however, mitigations are available to limit exposure of the
vulnerabilities.
This advisory is posted at
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20100324-sip.
Note: The March 24, 2010, Cisco IOS Software Security Advisory bundled
publication includes seven Securit
Cisco
Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities
vendor_cisco
CVE-2010-0579 Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities
CVE-2010-0579: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities
Multiple vulnerabilities exist in the Session Initiation Protocol (SIP) implementation in Cisco IOS ® Software that could allow an unauthenticated, remote attacker to cause a reload of an affected device when SIP operation is enabled. Remote code execution may also be possible. Cisco has released software updates that address these vulnerabilities. For devices that must run SIP there are no
CWE: CWE-399, CWE-94, CWE-399, CWE-94
Bug IDs: CSCsz48680, CSCsz89904, CSCtb93416, CSCsz48680, CSCsz89904
No detection rules found.
No public exploits indexed.
http://secunia.com/advisories/39068http://securitytracker.com/id?1023744http://tools.cisco.com/security/center/viewAlert.x?alertId=20063http://www.cisco.com/en/US/products/products_security_advisory09186a0080b20f32.shtmlhttp://secunia.com/advisories/39068http://securitytracker.com/id?1023744http://tools.cisco.com/security/center/viewAlert.x?alertId=20063http://www.cisco.com/en/US/products/products_security_advisory09186a0080b20f32.shtml
2010-03-25
Published