SIP Inspection Vulnerability in Cisco Application Control Engine Module and 4710 Appliance
CVE-2010-2825

Currently unrated

Key Information:

Vendor: Cisco
Status: Ace Module
Vendor: CVE Published:; 17 August 2010

Summary

An unspecified vulnerability in the SIP inspection feature of Cisco's Application Control Engine (ACE) Module and ACE 4710 appliance allows remote attackers to exploit crafted SIP packets sent over TCP or UDP. This could lead to a denial of service, causing the affected device to reload unexpectedly. This issue affects specific software versions on both the Catalyst 6500 series switches, 7600 series routers, and the ACE 4710 appliance, highlighting the importance of updating to secure versions to mitigate potential risks. For more details, refer to the advisory from Cisco.

References

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 17, 2010