CVE-2009-2051

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

SecuriTeam™
Beyond Security®

SecuriTeam™ Home
Ask the Team
Mailing Lists
Advertising Info
Blogs

	SecuriTeam™ in Your Inbox

	E-mail this CVE-2009-2051 to a friend

New vulnerability?
New tool?
Tell us

Credit:
The original article can be found at: http://www.cisco.com/warp/public/707/cisco-sa-20100922-sip.shtml

Website Security Scan	Code Vulnerability Test	Network Assessment Tool
Detect hidden vulnerabilities	Exhaustive automated testing	Real-time, continuous security
Get guidance from professionals	of internal or 3rd party code.	scanning for your entire network

Check for CVE-2009-2051

Vulnerability Assessment and Management.
Automated Pen Testing for 50 to 50,000 nodes
beyondsecurity.com/vulnerability-scanner

Vulnerable Systems:
* Cisco IOS Software with SIP voice services enabled

Immune Systems:
* Cisco IOS XR Software

Three vulnerabilities exist in the SIP implementation in Cisco IOS Software that may allow a remote attacker to cause an affected device to reload. These vulnerabilities are triggered when the device running Cisco IOS Software processes crafted SIP messages. Successful exploitation of the vulnerabilities in this advisory may result in a reload of the device. Repeated exploitation could result in a sustained denial of service condition.

Patch Availability:
Please refer to section "Software Versions and Fixes" at:
http://www.cisco.com/warp/public/707/cisco-sa-20100922-sip.shtml

CVE Information:
CVE-2010-2835
CVE-2009-2051
CVE-2010-2834

Disclosure Timeline:
2010-September-22 Public Release

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus