SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionThe remote Cisco Adaptive Security Appliance (ASA) Software contains a vulnerability that could allow an unauthenticated, remote attacker to cause a memory leak which can be exploited to create a denial of service condition.
The vulnerability is due to improper handling of Session Initiation Protocol (SIP) packets. An attacker could exploit this vulnerability via specially crafted SIP packets.
SolutionApply the relevant patch referenced in Cisco Bug Id CSCuf67469.
Alternatively, the vendor has provided a workaround that involves disabling SIP inspection on the affected device.