Vigil@nce - Cisco IOS: denial of service via SIP NAT
April 2012 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can send SIP packets which are translated by Cisco
IOS, in order to generate a memory leak, leading to a denial of
service.
Severity: 2/4
Creation date: 28/03/2012
IMPACTED PRODUCTS
– Cisco Catalyst
– Cisco IOS
– Cisco Router
DESCRIPTION OF THE VULNERABILITY
Routers can translate (Network Address Translation) packets, in
order to change their addresses.
However, during the translation of SIP (Session Initiation
Protocol) packets, a memory area is never freed by the IOS.
An attacker can therefore send SIP packets which are translated by
Cisco IOS, in order to generate a memory leak, leading to a denial
of service.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-IOS-denial-of-service-via-SIP-NAT-11505