CVE-2011-3279

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.1 through 12.4 Cisco IOS versions 15.0 through 15.1 Cisco IOS XE version 3.1.xSG

Description The provider-edge MPLS NAT implementation allows remote attackers to cause a denial of service via a malformed SIP packet to UDP port 5060. The Cisco IOS Software network address translation feature contains multiple denial of service vulnerabilities in the translation of protocols such as Session Initiation Protocol, NetMeeting Directory, and H.323 protocol. These vulnerabilities are caused by packets in transit on the affected devices when those packets require application layer translation.

Recommendations For Cisco IOS versions 12.1 through 12.4, update to a fixed software version. For Cisco IOS versions 15.0 through 15.1, update to a fixed software version. For Cisco IOS XE version 3.1.xSG, update to a fixed software version. As a temporary workaround, consider restricting access to UDP port 5060 to minimize the risk of exploitation.