SynopsisThe remote security device is missing a vendor-supplied security patch.
DescriptionThe remote Cisco ASA is missing a security patch and may be affected by a denial of service vulnerability. When SIP inspection is enabled and SIP traffic does not establish the secondary connection, duplicate pre-allocated secondary pinholes are created, which could cause CPU utilization to increase. A remote, unauthenticated attacker could exploit this to cause a denial of service.
SolutionApply the relevant patch referenced in the bug details for CSCtz63143.