Think you have a false positive on this rule?

Sid 1-19389

Message

PROTOCOL-VOIP REGISTER flood

Summary

Memory leak in the SIP inspection engine in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to cause a denial of service (memory consumption and instability) via crafted SIP packets, aka Bug ID CSCuf67469.

Impact

Attempted Denial of Service

CVE-2014-2154:

CVSS base score 5.0

CVSS impact score 2.9

CVSS exploitability score 10.0

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

Detailed information

CVE-2014-2154: Memory leak in the SIP inspection engine in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to cause a denial of service (memory consumption and instability) via crafted SIP packets, aka Bug ID CSCuf67469.

Affected systems

  • cisco adaptivesecurityappliance_software -

Ease of attack

CVE-2014-2154:

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

False positives

None known

False negatives

None known

Corrective action

Contributors

  • Cisco's Talos Intelligence Group

Additional References

  • www.ietf.org/rfc/rfc3261.txt