CVE-2010-0579
UnknownEPSS 2.52%
Last modified
CVE-2010-0579 is a vulnerability of currently unknown severity. The SIP implementation in Cisco IOS 12.3 and 12.4 allows remote attackers to cause a denial of service (device reload) via a malformed SIP message, aka Bug ID CSCtb93416, the "SIP Message Handling Denial of Service Vulnerability.". EPSS estimates a 2.52% chance of exploitation in the next 30 days.
Description
The SIP implementation in Cisco IOS 12.3 and 12.4 allows remote attackers to cause a denial of service (device reload) via a malformed SIP message, aka Bug ID CSCtb93416, the "SIP Message Handling Denial of Service Vulnerability."
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios | 12.3jk |
| Cisco | Ios | 12.3t |
| Cisco | Ios | 12.3xd |
| Cisco | Ios | 12.3xf |
| Cisco | Ios | 12.3xg |
| Cisco | Ios | 12.3xi |
| Cisco | Ios | 12.3xj |
| Cisco | Ios | 12.3xk |
| Cisco | Ios | 12.3xl |
| Cisco | Ios | 12.3xq |
| Cisco | Ios | 12.3xr |
| Cisco | Ios | 12.3xu |
| Cisco | Ios | 12.3xw |
| Cisco | Ios | 12.3xx |
| Cisco | Ios | 12.3xy |
| Cisco | Ios | 12.3yf |
| Cisco | Ios | 12.3yg |
| Cisco | Ios | 12.3yk |
| Cisco | Ios | 12.3ym |
| Cisco | Ios | 12.3yq |
| Cisco | Ios | 12.3ys |
| Cisco | Ios | 12.3yt |
| Cisco | Ios | 12.3yu |
| Cisco | Ios | 12.3yx |
| Cisco | Ios | 12.3yz |
| Cisco | Ios | 12.3za |
| Cisco | Ios | 12.4 |
| Cisco | Ios | 12.4gc |
| Cisco | Ios | 12.4md |
| Cisco | Ios | 12.4mda |
| Cisco | Ios | 12.4mr |
| Cisco | Ios | 12.4t |
| Cisco | Ios | 12.4xa |
| Cisco | Ios | 12.4xb |
| Cisco | Ios | 12.4xd |
| Cisco | Ios | 12.4xp |
| Cisco | Ios | 12.4xr |
| Cisco | Ios | 12.4xt |
| Cisco | Ios | 12.4ya |
| Cisco | Ios | 12.4yb |
| Cisco | Ios | 12.4yd |
| Cisco | Ios | 12.4ye |
| Cisco | Ios | 12.4yg |
References
- http://tools.cisco.com/security/center/viewAlert.x?alertId=20063Patch, Vendor Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b20f32.shtmlPatch, Vendor Advisory
- http://tools.cisco.com/security/center/viewAlert.x?alertId=20063Patch, Vendor Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b20f32.shtmlPatch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2010-0579?
The SIP implementation in Cisco IOS 12.3 and 12.4 allows remote attackers to cause a denial of service (device reload) via a malformed SIP message, aka Bug ID CSCtb93416, the "SIP Message Handling Denial of Service Vulnerability."
How severe is CVE-2010-0579?
Severity scoring for CVE-2010-0579 is pending analysis. The EPSS model estimates a 2.52% probability of exploitation in the next 30 days.
How do I fix CVE-2010-0579?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2010-0579?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST