Cisco.Adaptive.Security.Appliance.SIP.Handling.DoS

description-logoDescription

This indicates an attack attempt to exploit a Denial of Service Vulnerability in Cisco Adaptive Security Appliance and Cisco Firepower Threat Defence.
The vulnerability is due to an error in the vulnerable application when handling a maliciously crafted SIP request. An attacker can cause a denial of service condition within the context of the application, via a crafted SIP request.

affected-products-logoAffected Products

3000 Series Industrial Security Appliance (ISA)
ASA 5500-X Series Next-Generation Firewalls
ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers
Adaptive Security Virtual Appliance (ASAv)
Firepower 2100 Series Security Appliance
Firepower 4100 Series Security Appliance
Firepower 9300 ASA Security Module
FTD Virtual (FTDv)

Impact logoImpact

Denial of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181031-asaftd-sip-dos

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-01-04 13.518 Default_action:pass:drop
2018-11-20 13.494