CVE-2010-0581

Summary

Unspecified vulnerability in the SIP implementation in Cisco IOS 12.3 and 12.4 allows remote attackers to execute arbitrary code via a malformed SIP message, aka Bug ID CSCsz89904, the "SIP Packet Parsing Arbitrary Code Execution Vulnerability."

Impact & exploitability

AV:N/AC:L/Au:N/C:C/I:C/A:C

Affected products we track (1)

Recommendation

Apply the vendor fix promptly. Open any affected product above for its exact safe version.

Official patch: http://tools.cisco.com/security/center/viewAlert.x?alertId=20065 ↗

Additional information

• NVD record
• http://tools.cisco.com/security/center/viewAlert.x?alertId=20065Patch
• http://www.cisco.com/en/US/products/products_security_advisory09186a0080b20f32.shtmlPatch
• http://secunia.com/advisories/39068
• http://securitytracker.com/id?1023744