CVE-2012-4660

Cisco Adaptive Security Appliance Software 8.2-8.6 - Denial of Service via SIP Media-Update Packet

Title source: llm
STIX 2.1

Description

The SIP inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.2 before 8.2(5.17), 8.3 before 8.3(2.28), 8.4 before 8.4(2.13), 8.5 before 8.5(1.4), and 8.6 before 8.6(1.5) allows remote attackers to cause a denial of service (device reload) via a crafted SIP media-update packet, aka Bug ID CSCtr63728.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/55864
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/86144

Scores

EPSS 0.0180
EPSS Percentile 75.9%

Details

CWE
CWE-119
Status published
Products (30)
cisco/5500_series_adaptive_security_appliance
cisco/adaptive_security_appliance_software 8.2
cisco/adaptive_security_appliance_software 8.2\(1\)
cisco/adaptive_security_appliance_software 8.2\(2\)
cisco/adaptive_security_appliance_software 8.2\(3\)
cisco/adaptive_security_appliance_software 8.2\(3.9\)
cisco/adaptive_security_appliance_software 8.2\(4\)
cisco/adaptive_security_appliance_software 8.2\(4.1\)
cisco/adaptive_security_appliance_software 8.2\(4.4\)
cisco/adaptive_security_appliance_software 8.2\(5\)
... and 20 more
Published Oct 29, 2012
Tracked Since Feb 18, 2026