Detections
Analytics
Rockwell Automation Stratix Cisco IOS and IOS XE and Cisco Unified Communications Manager Software Session Initiation Protocol Memory Leak (CVE-2016-1350)
high Tenable OT Security Plugin ID 501821
Synopsis
The remote OT asset is affected by a vulnerability.Description
A vulnerability in the Session Initiation Protocol (SIP) gateway implementation in Cisco IOS, IOS XE, and Cisco Unified Communications Manager Software could allow an unauthenticated, remote attacker to cause a memory leak and eventual reload of an affected device. The vulnerability is due to improper processing of malformed SIP messages. An attacker could exploit this vulnerability by sending malformed SIP messages to be processed by an affected device. An exploit could allow the attacker to cause a memory leak and eventual reload of the affected device.This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.
Solution
Rockwell Automation has provided a new firmware version, Version 15.6.3, to mitigate these vulnerabilities.See Rockwell Automation's security advisory for more information.
See Also
http://www.nessus.org/u?e22736fb
Plugin Details
Severity: High
ID: 501821
Version: 1.1
Type: remote
Family: Tenable.ot
Published: 11/15/2023
Updated: 11/16/2023
Supported Sensors: Tenable OT Security
Risk Information
VPR
Risk Factor: Low
Score: 3.6
CVSS v2
Risk Factor: High
Base Score: 7.8
Temporal Score: 5.8
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS Score Source: CVE-2016-1350
CVSS v3
Risk Factor: High
Base Score: 7.5
Temporal Score: 6.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/h:rockwellautomation:allen-bradley_stratix_5900_industrial_managed_ethernet_switch
Required KB Items: Tenable.ot/Rockwell
Exploit Ease: No known exploits are available
Patch Publication Date: 3/25/2016
Vulnerability Publication Date: 3/25/2016
Reference Information
CVE: CVE-2016-1350
CWE: 755