This script is Copyright (C) 2012-2013 Tenable Network Security, Inc.
The remote security device is missing a vendor-supplied security
The remote Cisco ASA is missing a security patch and may be affected
by a denial of service vulnerability. When SIP inspection is enabled
and SIP traffic does not establish the secondary connection, duplicate
pre-allocated secondary pinholes are created, which could cause CPU
utilization to increase. A remote, unauthenticated attacker could
exploit this to cause a denial of service.
See also :
Apply the relevant patch referenced in the bug details for CSCtz63143.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 3.7
Public Exploit Available : false
Nessus Plugin ID: 61514 ()
Bugtraq ID: 54836
CVE ID: CVE-2012-2472
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.