Vulnerability Name:

CVE-2007-0961 (CCN-32487)

Assigned:2007-02-14
Published:2007-02-14
Updated:2018-10-30
Summary:Cisco PIX 500 and ASA 5500 Series Security Appliances 6.x before 6.3(5.115), 7.0 before 7.0(5.2), and 7.1 before 7.1(2.5), and the FWSM 3.x before 3.1(3.24), when the "inspect sip" option is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed SIP packets.
CVSS v3 Severity:5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
5.8 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): 
Access Complexity (AC): 
Authentication (Au): 
Impact Metrics:Confidentiality (C): 
Integrity (I): 
Availibility (A): 
5.4 Medium (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C)
4.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): 
Access Complexity (AC): 
Athentication (Au): 
Impact Metrics:Confidentiality (C): 
Integrity (I): 
Availibility (A): 
Vulnerability Type:CWE-Other
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2007-0961

Source: OSVDB
Type: UNKNOWN
33054

Source: CCN
Type: SA24160
Cisco PIX and ASA Privilege Escalation and Denial of Service

Source: SECUNIA
Type: Vendor Advisory
24160

Source: CCN
Type: SA24179
Cisco PIX SIP Inspection Denial of Service

Source: SECUNIA
Type: UNKNOWN
24179

Source: CCN
Type: SA24180
Cisco Firewall Services Module SIP DoS and ACL Corruption

Source: SECUNIA
Type: Patch, Vendor Advisory
24180

Source: CCN
Type: SECTRACK ID: 1017651
Cisco ASA Lets Remote Users Deny Service and Remote Authenticated Users Gain Elevated Privileges

Source: SECTRACK
Type: Patch
1017651

Source: CCN
Type: SECTRACK ID: 1017652
Cisco PIX Firewall Lets Remote Users Deny Service and Remote Authenticated Users Gain Elevated Privileges

Source: CISCO
Type: Patch, Vendor Advisory
20070214 Multiple Vulnerabilities in Firewall Services Module

Source: CISCO
Type: Patch, Vendor Advisory
20070214 Multiple Vulnerabilities in Cisco PIX and ASA Appliances

Source: CCN
Type: cisco-sa-20070214-pix
Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and ASA Appliances

Source: CCN
Type: US-CERT VU#430969
Cisco Firewall Services Module vulnerable to DoS via inspection of malformed SIP messages

Source: CERT-VN
Type: US Government Resource
VU#430969

Source: CCN
Type: OSVDB ID: 33054
Cisco PIX / ASA inspect sip Malformed SIP Packet DoS

Source: BID
Type: UNKNOWN
22561

Source: CCN
Type: BID-22561
Cisco Multiple Products Multiple Remote Denial Of Service Vulnerabilities

Source: BID
Type: UNKNOWN
22562

Source: CCN
Type: BID-22562
Cisco PIX/ASA Privilege Escalation Vulnerability

Source: SECTRACK
Type: UNKNOWN
1017652

Source: VUPEN
Type: UNKNOWN
ADV-2007-0608

Source: XF
Type: UNKNOWN
cisco-pix-asa-sip-dos(32487)

Source: XF
Type: UNKNOWN
cisco-pix-asa-sip-dos(32487)

Source: XF
Type: UNKNOWN
cisco-fwsm-sip-dos(32501)

Vulnerable Configuration:Configuration 1:
  • cpe:/h:cisco:asa_5500:6.3:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:asa_5500:7.0:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:asa_5500:7.1:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:asa_5500:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:pix_firewall_software:6.3:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:pix_firewall_software:7.0:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:pix_firewall_software:7.1:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:pix_firewall_software:7.2:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/h:cisco:asa_5500:6.3:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:asa_5500:7.0:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:asa_5500:7.1:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:asa_5500:7.2:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Vulnerability Name:

    CVE-2007-0961 (CCN-32501)

    Assigned:2007-02-14
    Published:2007-02-14
    Updated:2018-10-30
    Summary:Cisco PIX 500 and ASA 5500 Series Security Appliances 6.x before 6.3(5.115), 7.0 before 7.0(5.2), and 7.1 before 7.1(2.5), and the FWSM 3.x before 3.1(3.24), when the "inspect sip" option is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed SIP packets.
    CVSS v3 Severity:5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)
    Exploitability Metrics:Attack Vector (AV): Network
    Attack Complexity (AC): High
    Privileges Required (PR): None
    User Interaction (UI): None
    Scope:Scope (S): Unchanged
    Impact Metrics:Confidentiality (C): None
    Integrity (I): None
    Availibility (A): High
    CVSS v2 Severity:7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
    5.8 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
    Exploitability Metrics:Access Vector (AV): 
    Access Complexity (AC): 
    Authentication (Au): 
    Impact Metrics:Confidentiality (C): 
    Integrity (I): 
    Availibility (A): 
    5.4 Medium (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C)
    4.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
    Exploitability Metrics:Access Vector (AV): 
    Access Complexity (AC): 
    Athentication (Au): 
    Impact Metrics:Confidentiality (C): 
    Integrity (I): 
    Availibility (A): 
    Vulnerability Type:CWE-Other
    Vulnerability Consequences:Denial of Service
    References:Source: MITRE
    Type: CNA
    CVE-2007-0961

    Source: CCN
    Type: SA24160
    Cisco PIX and ASA Privilege Escalation and Denial of Service

    Source: CCN
    Type: SA24179
    Cisco PIX SIP Inspection Denial of Service

    Source: CCN
    Type: SA24180
    Cisco Firewall Services Module SIP DoS and ACL Corruption

    Source: CCN
    Type: SECTRACK ID: 1017651
    Cisco ASA Lets Remote Users Deny Service and Remote Authenticated Users Gain Elevated Privileges

    Source: CCN
    Type: SECTRACK ID: 1017652
    Cisco PIX Firewall Lets Remote Users Deny Service and Remote Authenticated Users Gain Elevated Privileges

    Source: CCN
    Type: cisco-sa-20070214-fwsm
    Cisco Security Advisory: Multiple Vulnerabilities in Firewall Services Module

    Source: CCN
    Type: US-CERT VU#430969
    Cisco Firewall Services Module vulnerable to DoS via inspection of malformed SIP messages

    Source: CCN
    Type: OSVDB ID: 33054
    Cisco PIX / ASA inspect sip Malformed SIP Packet DoS

    Source: CCN
    Type: BID-22561
    Cisco Multiple Products Multiple Remote Denial Of Service Vulnerabilities

    Source: CCN
    Type: BID-22562
    Cisco PIX/ASA Privilege Escalation Vulnerability

    Source: XF
    Type: UNKNOWN
    cisco-fwsm-sip-dos(32501)

    BACK
    cisco asa 5500 6.3
    cisco asa 5500 7.0
    cisco asa 5500 7.1
    cisco asa 5500 7.2
    cisco pix firewall software 6.3
    cisco pix firewall software 7.0
    cisco pix firewall software 7.1
    cisco pix firewall software 7.2
    cisco asa 5500 6.3
    cisco asa 5500 7.0
    cisco asa 5500 7.1
    cisco asa 5500 7.2