Cisco IOS XE 3.2 through 3.4 before 3.4.5S, and 3.5 through 3.7 before 3.7.1S, on 1000 series Aggregation Services Routers (ASR), when VRF-aware NAT and SIP ALG are enabled, allows remote attackers to cause a denial of service (card reload) by sending many SIP packets, aka Bug ID CSCuc65609.
2013-04-11T10:55:01.910
2025-04-11T00:51:21.963
Deferred
CVSSv2: 7.8 (HIGH)
AV:N/AC:L/Au:N/C:N/I:N/A:C
10.0
6.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Hardware | cisco | asr_1001 | - | Yes |
| Hardware | cisco | asr_1002 | - | Yes |
| Hardware | cisco | asr_1002-x | - | Yes |
| Hardware | cisco | asr_1002_fixed_router | - | Yes |
| Hardware | cisco | asr_1004 | - | Yes |
| Hardware | cisco | asr_1006 | - | Yes |
| Hardware | cisco | asr_1023_router | - | Yes |
| Operating System | cisco | ios_xe | 3.2.0s | Yes |
| Operating System | cisco | ios_xe | 3.2.1s | Yes |
| Operating System | cisco | ios_xe | 3.2.2s | Yes |
| Operating System | cisco | ios_xe | 3.3.0s | Yes |
| Operating System | cisco | ios_xe | 3.3.1s | Yes |
| Operating System | cisco | ios_xe | 3.3.2s | Yes |
| Operating System | cisco | ios_xe | 3.4.0as | Yes |
| Operating System | cisco | ios_xe | 3.4.0s | Yes |
| Operating System | cisco | ios_xe | 3.4.1s | Yes |
| Operating System | cisco | ios_xe | 3.4.2s | Yes |
| Operating System | cisco | ios_xe | 3.4.3s | Yes |
| Operating System | cisco | ios_xe | 3.4.4s | Yes |
| Operating System | cisco | ios_xe | 3.7.0s | Yes |