CVE-2003-1109

Currently unrated

Key Information:

Vendor: Cisco
Status: Ios; Ip Phone 7940; Ip Phone 7960; Pix Firewall Software
Vendor: CVE Published:; 31 December 2003

Summary

The Session Initiation Protocol (SIP) implementation in multiple Cisco products including IP Phone models 7940 and 7960, IOS versions in the 12.2 train, and Secure PIX 5.2.9 to 6.2.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite.

References

http://www.ee.oulu.fi/research/ouspg/protos/testing/c07/sip/

x_refsource_MISC

http://www.securitytracker.com/id?1006145

vdb-entryx_refsource_SECTRACK

http://www.cisco.com/warp/public/707/cisco-sa-20030221-pr...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Mar 11, 2005
Vulnerability published
Dec 31, 2003