CVE-2013-1145

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.2, 12.4, 15.0, and 15.1

Description The issue is related to a memory leak in Cisco IOS when Zone-Based Policy Firewall SIP application layer gateway inspection is enabled. This allows remote attackers to cause a denial of service via malformed SIP messages. Exploitation of this vulnerability could cause an interruption of services. Only devices configured for SIP inspection are affected.

Recommendations For Cisco IOS versions 12.2, 12.4, 15.0, and 15.1, update to a version that includes the fix for this memory leak vulnerability. As a temporary workaround, consider disabling SIP inspection on devices that do not require it, until a patch is available.