Affected Systems:
Cisco IOS 15.x
Describe:
--------------------------------------------------------------------------------
Bugtraq id:70129
CVE (CAN) id:cve-2014-3361
Cisco IOS is the internetwork operating system used on most Cisco system routers and network switches.
Cisco IOS 15.0, 15.1, 15.2, 15.4 does not properly implement SIP through NAT, there is a remote denial of service vulnerability on the implementation, and an attacker exploiting this vulnerability through a multipart SDP IPv4 traffic can cause an affected device overload.
<* Source: Cisco
Links: Http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-nat
*>
Suggestions:
--------------------------------------------------------------------------------
Vendor Patches:
Cisco
-----
Cisco has released a security bulletin (CISCO-SA-20140924-NAT) for this and a corresponding patch:
Cisco-sa-20140924-nat:cisco IOS software Network Address translation Denial of Service vulnerability
Links: Http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-nat
Cisco iOS Denial of service Vulnerability-China cold Dragon produced