Unspecified vulnerability in Cisco PIX 500 Series Security Appliances allows remote attackers to send arbitrary UDP packets to intranet devices via unspecified vectors involving Session Initiation Protocol (SIP) fixup commands, a different issue than CVE-2006-4032. NOTE: the vendor, after working with the researcher, has been unable to reproduce the issue
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Pix_firewall_501 | Cisco | * | * |
| Pix_firewall_506 | Cisco | * | * |
| Pix_firewall_515 | Cisco | * | * |
| Pix_firewall_515e | Cisco | * | * |
| Pix_firewall_520 | Cisco | * | * |
| Pix_firewall_525 | Cisco | * | * |
| Pix_firewall_535 | Cisco | * | * |
| Pix_firewall_software | Cisco | 6.3 (including) | 6.3 (including) |
References
- http://searchsecurity.techtarget.com/originalContent/0%2C289142%2Csid14_gci1207450%2C00.html
- http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/tsd_products_security_response09186a008070d33b.html
- http://www.idoel.smilejogja.com/2006/08/14/blinded-by-the-glare-of-facial-piercings-at-black-hat-or-the-one-that-got-away/
- http://www.networkworld.com/news/2006/080406-black-hat-unpatched-flaw-revealed.html?t5
- http://www.osvdb.org/29781
- http://www.securityfocus.com/bid/19536
- http://searchsecurity.techtarget.com/originalContent/0%2C289142%2Csid14_gci1207450%2C00.html
- http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/tsd_products_security_response09186a008070d33b.html
- http://www.idoel.smilejogja.com/2006/08/14/blinded-by-the-glare-of-facial-piercings-at-black-hat-or-the-one-that-got-away/
- http://www.networkworld.com/news/2006/080406-black-hat-unpatched-flaw-revealed.html?t5
- http://www.osvdb.org/29781
- http://www.securityfocus.com/bid/19536