ID de Prueba:	1.3.6.1.4.1.25623.1.0.106860
Categoría:	CISCO
Título:	Cisco IP Phone 8800 Series SIP DoS Vulnerability (cisco-sa-20170607-sip)
Resumen:	A vulnerability in Session Initiation Protocol (SIP) call; handling of Cisco IP Phone 8800 Series devices could allow an unauthenticated, remote attacker to; cause a denial of service (DoS) condition due to the SIP process unexpectedly restarting. All; active phone calls are dropped as the SIP process restarts.
Descripción:	Summary: A vulnerability in Session Initiation Protocol (SIP) call handling of Cisco IP Phone 8800 Series devices could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to the SIP process unexpectedly restarting. All active phone calls are dropped as the SIP process restarts. Vulnerability Insight: The vulnerability is due to incomplete input validation of the SIP packet header. An attacker could exploit this vulnerability by sending a malformed SIP packet to a targeted phone. Vulnerability Impact: An exploit could allow the attacker to cause a DoS condition when all phone calls are dropped, due to the SIP process unexpectedly restarting. Solution: See the referenced vendor advisory for a solution. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-6656 BugTraq ID: 98996 http://www.securityfocus.com/bid/98996 http://www.securitytracker.com/id/1038636
Copyright	Copyright (C) 2017 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.