Cisco IOS SIP Packet Handling Remote Denial Of Service Vulnerability

Bugtraq ID:	22330
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2007-0648
Remote:	Yes
Local:	No
Published:	Jan 31 2007 12:00AM
Updated:	May 12 2015 07:34PM
Credit:	The vendor disclosed this issue.
Vulnerable:	Cisco IOS 12.4XT Cisco IOS 12.4XP Cisco IOS 12.4XJ Cisco IOS 12.4XE Cisco IOS 12.4XD Cisco IOS 12.4XC Cisco IOS 12.4XB Cisco IOS 12.4XA Cisco IOS 12.4T Cisco IOS 12.4SW Cisco IOS 12.4MR Cisco IOS 12.4(9)T Cisco IOS 12.4(8) Cisco IOS 12.4(7a) Cisco IOS 12.4(7) Cisco IOS 12.4(6)T1 Cisco IOS 12.4(6)T Cisco IOS 12.4(5b) Cisco IOS 12.4(5) Cisco IOS 12.4(4)T2 Cisco IOS 12.4(4)T Cisco IOS 12.4(4)MR Cisco IOS 12.4(3d) Cisco IOS 12.4(3b) Cisco IOS 12.4(3a) Cisco IOS 12.4(3)T2 Cisco IOS 12.4(3) Cisco IOS 12.4(2)XB2 Cisco IOS 12.4(2)XB Cisco IOS 12.4(2)XA Cisco IOS 12.4(2)T4 Cisco IOS 12.4(2)T3 Cisco IOS 12.4(2)T2 Cisco IOS 12.4(2)T1 Cisco IOS 12.4(2)T Cisco IOS 12.4(2)MR1 Cisco IOS 12.4(2)MR Cisco IOS 12.4(1c) Cisco IOS 12.4(1b) Cisco IOS 12.4(1) Cisco IOS 12.4 Cisco IOS 12.3YX Cisco IOS 12.3YU Cisco IOS 12.3YT Cisco IOS 12.3YQ Cisco IOS 12.3YM Cisco IOS 12.3YK Cisco IOS 12.3YG Cisco IOS 12.3YF Cisco IOS 12.3XY Cisco IOS 12.3XX Cisco IOS 12.3XW Cisco IOS 12.3XU Cisco IOS 12.3XR Cisco IOS 12.3XQ Cisco IOS 12.3XH Cisco IOS 12.3(14)T5 Cisco IOS 12.3(14)T4 Cisco IOS 12.3(14)T2 Cisco IOS 12.3(14)T
Not Vulnerable:

Cisco IOS SIP Packet Handling Remote Denial Of Service Vulnerability

CISCO IOS is prone to a denial-of-service vulnerability.

This issue affects only devices that support voice communications but don't have SIP enabled.

Attackers can exploit this issue to reload a vulnerable device.

IOS releases subsequent to 12.3(14)T, 12.3(8)YC1, and 12.3(8)YG are vulnerable. All 12.4 releases are affected as well.

Cisco IOS SIP Packet Handling Remote Denial Of Service Vulnerability

An attacker uses standard networking tools to exploit this issue.

Cisco IOS SIP Packet Handling Remote Denial Of Service Vulnerability

Solution:
The vendor released an advisory and fixes addressing this issue. Please see the referenced vendor advisory for details on obtaining the appropriate updates. Please refer to the most recent revision of this advisory for current information.

Cisco IOS SIP Packet Handling Remote Denial Of Service Vulnerability

References:

• Cisco IOS Homepage (Cisco Systems)
  
• cisco-sa-20070131-sip - Cisco Security Advisory: SIP Packet Reloads IOS Devices (Cisco)
  
• Cisco Security Advisory: SIP Packet Reloads IOS Devices Not Configured for SIP (Cisco)
  
• Vulnerability Note VU#438176 - Cisco IOS fails to properly handle Session Initia (US-CERT)