CERT-In Vulnerability Note CIVN-2010-93
Cisco IOS Software H.323 Protocol Packet Handling Memory Leak Denial of Service Vulnerability

Original Issue Date: March 26, 2010

Severity Rating:Medium

System Affected

• Cisco IOS Software with H.323 implementation

Overview

A vulnerability has been reported in H.323 implemented Cisco IOS Software that could allow a remote attacker to cause a denial of service (DoS) condition. 

Description

H.323 is the ITU standard for real-time multimedia communications and conferencing over packet-based (IP) networks.

The vulnerability is due to improper processing of malformed H.323 packets.   The affected software may consume and fail to free memory when processing malformed packets, resulting in a memory leak.  A remote attacker could exploit the vulnerability by sending a series of malicious packets to the targeted device.  Successful exploitation could allow the attacker to cause the device to stop responding, resulting in a DoS condition.

Solution

Apply appropriate software fixes as mentioned in
Cisco Security Advisory

Vendor Information

CISCO
http://www.cisco.com/warp/public/707/cisco-sa-20100324-h323.shtml

References

CISCO
http://tools.cisco.com/security/center/viewAlert.x?alertId=20067

SecurityTracker
http://securitytracker.com/alerts/2010/Mar/1023742.html

CVE Name
CVE-2010-0583

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Phone: +91-11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003