CallManager Express (CME) on Cisco IOS prior to 15.0(1)XA1 does not properly handle SIP TRUNK traffic that contains rate bursts and a "peculiar" request size, which allows remote malicious users to cause a denial of service (memory consumption) by sending this traffic over a long duration, aka Bug ID CSCtb47950.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco ios |