CVE-2014-3361Improper Restriction of Operations within the Bounds of a Memory Buffer in Cisco IOS

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-20Improper Input Validation6 documents6 sources
Severity
7.1HIGHNVD
EPSS
1.0%
top 22.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco IOS
Timeline
PublishedSep 25
Latest updateMay 17

Description

The ALG module in Cisco IOS 15.0 through 15.4 does not properly implement SIP over NAT, which allows remote attackers to cause a denial of service (device reload) via multipart SDP IPv4 traffic, aka Bug ID CSCun54071.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages1 packages

NVDcisco/ios5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-7c87-x77q-chcq: The ALG module in Cisco IOS 152022-05-17
CVEList
CVE-2014-3361: The ALG module in Cisco IOS 152014-09-25

📋Vendor Advisories

2
CISA ICS
Rockwell Automation Stratix 59002017-05-10
Cisco
Cisco IOS Software Network Address Translation Denial of Service Vulnerability2014-09-24

💬Community

1
Bugzilla
CVE-2009-5138 gnutls: incorrect handling of V1 intermediate certificates2014-02-24
CVE-2014-3361 — Cisco IOS vulnerability | cvebase