CVE-2007-0648

Published: Feb 1, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Cisco IOS after 12.3(14)T, 12.3(8)YC1, 12.3(8)YG, and 12.4, with voice support and without Session Initiated Protocol (SIP) configured, allows remote attackers to cause a denial of service (crash) by sending a crafted packet to port 5060/UDP.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

23978

third-party-advisory

x_refsource_SECUNIA

20070131 SIP Packet Reloads IOS Devices Not Configured for SIP

vendor-advisory

x_refsource_CISCO

1017575

vdb-entry

x_refsource_SECTRACK

http://www.cisco.com/warp/public/707/cisco-air-20070131-sip.shtml

x_refsource_CONFIRM

22330

vdb-entry

x_refsource_BID

cisco-sip-packet-dos(31990)

vdb-entry

x_refsource_XF

oval:org.mitre.oval:def:5138

vdb-entry

signature

x_refsource_OVAL

ADV-2007-0428

vdb-entry

x_refsource_VUPEN

VU#438176

third-party-advisory

x_refsource_CERT-VN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2007-0648

Description

Affected Products

References