Vigil@nce - Cisco IOS: several vulnerabilities
January 2011 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/
SYNTHESIS OF THE VULNERABILITY
An attacker can create a denial of service or bypass security
features of Cisco IOS.
Severity: 2/4
Creation date: 12/01/2011
IMPACTED PRODUCTS
– Cisco IOS
– Cisco Router
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in Cisco IOS.
An attacker can generate a denial of service in the H.323
gk_circuit_info_do_in_acf() function. [severity:2/4; BID-45758,
CSCsz72535, CVE-2009-5039]
An attacker can create a denial of service via IRC. [severity:2/4;
BID-45764, CSCso05336, CVE-2009-5038]
An attacker can create a denial of service in Cisco IOS
CallManager Express. [severity:2/4; BID-45765, CSCta63555,
CVE-2009-5040]
An attacker can send SIP REGISTER messages, in order to create a
memory leak. [severity:2/4; BID-45786, CSCtg41733, CVE-2010-4683]
An attacker can use a TFTP Copy on IPv6, in order to create a
denial of service. [severity:2/4; BID-45769, CSCtb28877,
CVE-2010-4684]
An attacker can connect with a banned certificate. [severity:2/4;
BID-45769, CSCta79031, CVE-2010-4685]
An attacker can use SIP TRUNK, in order to create a memory leak.
[severity:2/4; BID-45769, CSCtb47950, CVE-2010-4686]
An attacker can use STCAPP, in order to create a denial of
service. [severity:2/4; BID-45769, CSCtd42552, CVE-2010-4687]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-IOS-several-vulnerabilities-10264