Cisco.Adaptive.Security.Appliance.SIP.Handling.DoS
Description
This indicates an attack attempt to exploit a Denial of Service Vulnerability in Cisco Adaptive Security Appliance and Cisco Firepower Threat Defence.
The vulnerability is due to an error in the vulnerable application when handling a maliciously crafted SIP request. An attacker can cause a denial of service condition within the context of the application, via a crafted SIP request.
Affected Products
3000 Series Industrial Security Appliance (ISA)
ASA 5500-X Series Next-Generation Firewalls
ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers
Adaptive Security Virtual Appliance (ASAv)
Firepower 2100 Series Security Appliance
Firepower 4100 Series Security Appliance
Firepower 9300 ASA Security Module
FTD Virtual (FTDv)
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181031-asaftd-sip-dos
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |