CVE-2012-1315

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.4 through 15.2

Description The issue is related to a memory leak in the SIP inspection feature in the Zone-Based Firewall, allowing remote attackers to cause a denial of service via crafted transit SIP traffic. This is one of four vulnerabilities related to Cisco IOS Zone-Based Firewall features, including memory leaks associated with crafted IP packets, HTTP inspection, H.323 inspection, and SIP inspection.

Recommendations For Cisco IOS versions 12.4 through 15.2, update to a version that includes the software updates released by Cisco to address these vulnerabilities. As a temporary workaround, consider disabling the SIP inspection feature in the Zone-Based Firewall until a patch is available.