CVE-2010-0583

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.1 through 12.4 Cisco IOS versions 15.0M before 15.0(1)M1

Description A memory leak in the H.323 implementation allows remote attackers to cause a denial of service via malformed H.323 packets. This issue may be exploited to consume memory and cause a device reload. Two vulnerabilities in the H.323 implementation may be exploited remotely to cause a denial of service condition on a device running a vulnerable version of Cisco IOS Software.

Recommendations For Cisco IOS versions 12.1 through 12.4, consider disabling H.323 if it is not required, as there are no workarounds other than disabling the service. For Cisco IOS versions 15.0M before 15.0(1)M1, consider disabling H.323 if it is not required, as there are no workarounds other than disabling the service. Update to a version of Cisco IOS Software that addresses these vulnerabilities, as listed in the Cisco IOS Software Security Advisory.