Cisco ASA SIP Inspection DoS (CSCuf67469)

Medium Nessus Plugin ID 73827

Synopsis

The remote device is missing a vendor-supplied security patch.

Description

The remote Cisco Adaptive Security Appliance (ASA) Software contains a vulnerability that could allow an unauthenticated, remote attacker to cause a memory leak which can be exploited to create a denial of service condition.

The vulnerability is due to improper handling of Session Initiation Protocol (SIP) packets. An attacker could exploit this vulnerability via specially crafted SIP packets.

Solution

Apply the relevant patch referenced in Cisco Bug Id CSCuf67469.

Alternatively, the vendor has provided a workaround that involves disabling SIP inspection on the affected device.

See Also

http://www.nessus.org/u?3f31a15d

Plugin Details

Severity: Medium

ID: 73827

File Name: cisco-sn-CSCuf67469-asa.nasl

Version: 1.5

Type: local

Family: CISCO

Published: 2014/05/02

Updated: 2018/11/15

Dependencies: 12634

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:cisco:adaptive_security_appliance_software

Required KB Items: Host/Cisco/ASA, Host/Cisco/ASA/model

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2014/04/22

Vulnerability Publication Date: 2014/04/22

Reference Information

CVE: CVE-2014-2154

BID: 67036

CISCO-BUG-ID: CSCuf67469