CVE-2012-0383

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.4 through 15.1

Description The issue is related to a memory leak in the Network Address Translation (NAT) feature, allowing remote attackers to cause a denial of service (memory consumption, and device hang or reload) via SIP packets that require translation. This is due to a "memory starvation vulnerability" when packets in transit on the vulnerable device require translation on the SIP payload.

Recommendations For Cisco IOS versions 12.4 through 15.1, update to a newer version that addresses this vulnerability. As a temporary workaround, consider implementing a mitigation strategy to reduce the risk of exploitation, such as restricting SIP packet translation on the NAT feature.