Cisco: Four high priority security issues are found Cisco’s Adaptive Security Appliance (ASA) Software
http://images.techhive.com/images/article/2016/11/padlock-322494_1280-100691704-large.jpg
19th April 2017 By Michael Cooney
Cisco had a pretty large dump of security advisories today – seven “high priority” and one “critical” – impacting a variety of products many with the threat allowing a remote attacker to cause a denial of service.
First up this week Cisco said a vulnerability in the Session Initiation Protocol (SIP) UDP throttling process of Cisco Unified Communications Manager (Cisco Unified CM) software could let an unauthenticated, remote attacker cause a denial of service (DoS) attack.
“The vulnerability is due to insufficient rate limiting protection. An attacker could exploit this vulnerability by sending the affected device a high rate of SIP messages. An exploit could allow the attacker to cause the device to reload unexpectedly. The device and services will restart automatically,” Cisco stated.
Full Article