Intrusion PreventionCisco.7940.Phone.SIP.Message.Handling.Remote.DoS
Description
This indicates an attack attempt to exploit a Denial of Service vulnerability in Cisco VoIP Phone.
The vulnerability is a result of the application's failure to properly sanitize user supplied inputs. A remote attacker can exploit this to cause a Denial of Service condition.
Affected Products
Cisco VoIP Phone CP-7960 3.2
Cisco VoIP Phone CP-7960 3.1
Cisco VoIP Phone CP-7960 3.0
Cisco VoIP Phone CP-7960 8.6(0)
Cisco VoIP Phone CP-7940 3.2
Cisco VoIP Phone CP-7940 3.1
Cisco VoIP Phone CP-7940 3.0
Cisco VoIP Phone CP-7940 8.6(0)
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Refer to the vendor's website for a suggested workaround.
http://www.cisco.com/warp/public/707/cisco-sr-20070821-sip.shtml
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2021-03-31 | 18.049 | Sig Added |
| ID | 14911 |
| Created | Sep 09, 2011 |
| Updated | Nov 15, 2021 |
| Risk |
|
| CVE ID | CVE-2007-4459 |
| Exploit Prediction Score | 85.58% |
| Default Action | drop |
| Active | |
| Affected OS | Other |
| Affected App | Cisco |