CVE-2006-4194 | Vulnerability Database | Aqua Security

Unspecified vulnerability in Cisco PIX 500 Series Security Appliances allows remote attackers to send arbitrary UDP packets to intranet devices via unspecified vectors involving Session Initiation Protocol (SIP) fixup commands, a different issue than CVE-2006-4032. NOTE: the vendor, after working with the researcher, has been unable to reproduce the issue

Affected Software

Name	Vendor	Start Version	End Version
Pix_firewall_501	Cisco	*	*
Pix_firewall_506	Cisco	*	*
Pix_firewall_515	Cisco	*	*
Pix_firewall_515e	Cisco	*	*
Pix_firewall_520	Cisco	*	*
Pix_firewall_525	Cisco	*	*
Pix_firewall_535	Cisco	*	*
Pix_firewall_software	Cisco	6.3 (including)	6.3 (including)

References

http://searchsecurity.techtarget.com/originalContent/0%2C289142%2Csid14_gci1207450%2C00.html
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/tsd_products_security_response09186a008070d33b.html
http://www.idoel.smilejogja.com/2006/08/14/blinded-by-the-glare-of-facial-piercings-at-black-hat-or-the-one-that-got-away/
http://www.networkworld.com/news/2006/080406-black-hat-unpatched-flaw-revealed.html?t5
http://www.osvdb.org/29781
http://www.securityfocus.com/bid/19536
http://searchsecurity.techtarget.com/originalContent/0%2C289142%2Csid14_gci1207450%2C00.html
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/tsd_products_security_response09186a008070d33b.html
http://www.idoel.smilejogja.com/2006/08/14/blinded-by-the-glare-of-facial-piercings-at-black-hat-or-the-one-that-got-away/
http://www.networkworld.com/news/2006/080406-black-hat-unpatched-flaw-revealed.html?t5
http://www.osvdb.org/29781
http://www.securityfocus.com/bid/19536

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-4194
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html