Detections
Analytics

Cisco ASA SIP Inspection DoS (CSCuf67469)

medium Nessus Plugin ID 73827

Language:

Synopsis

The remote device is missing a vendor-supplied security patch.

Description

The remote Cisco Adaptive Security Appliance (ASA) Software contains a vulnerability that could allow an unauthenticated, remote attacker to cause a memory leak which can be exploited to create a denial of service condition.

The vulnerability is due to improper handling of Session Initiation Protocol (SIP) packets. An attacker could exploit this vulnerability via specially crafted SIP packets.

Solution

Apply the relevant patch referenced in Cisco Bug Id CSCuf67469.

Alternatively, the vendor has provided a workaround that involves disabling SIP inspection on the affected device.

See Also

http://www.nessus.org/u?3f31a15d

Plugin Details

Severity: Medium

ID: 73827

File Name: cisco-sn-CSCuf67469-asa.nasl

Version: 1.5

Type: local

Family: CISCO

Published: 5/2/2014

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/a:cisco:adaptive_security_appliance_software

Required KB Items: Host/Cisco/ASA, Host/Cisco/ASA/model

Exploit Ease: No known exploits are available

Patch Publication Date: 4/22/2014

Vulnerability Publication Date: 4/22/2014

Reference Information

CVE: CVE-2014-2154

BID: 67036

CISCO-BUG-ID: CSCuf67469