Description
The SIP inspection engine in Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.48), 8.4 before 8.4(6.5), 9.0 before 9.0(3.1), and 9.1 before 9.1(2.5) allows remote attackers to cause a denial of service (memory consumption or device reload) via crafted SIP packets, aka Bug ID CSCuh44052.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140409-asa
Scores
EPSS
0.0168
EPSS Percentile
74.3%
Details
CWE
CWE-20
Status
published
Products (4)
cisco/adaptive_security_appliance_software
8.2
cisco/adaptive_security_appliance_software
8.4
cisco/adaptive_security_appliance_software
9.0
cisco/adaptive_security_appliance_software
9.1
Published
Apr 10, 2014
Tracked Since
Feb 18, 2026