CVE-2012-2472

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 8.2 through 8.4

Description The issue allows remote attackers to cause a denial of service via crafted SIP traffic when SIP inspection is enabled. This is due to the creation of many identical pre-allocated secondary pinholes, which can lead to CPU consumption.

Recommendations For versions 8.2 through 8.4, consider disabling SIP inspection as a temporary workaround until a patch is available. Restrict access to the SIP functionality to minimize the risk of exploitation.