1. Home
  2. CVE Database
  3. CVE-2006-4194
MEDIUM · 5.0

CVE-2006-4194

Unspecified vulnerability in Cisco PIX 500 Series Security Appliances allows remote attackers to send arbitrary UDP packets to intranet devices via unspecified vectors involving Session Initiation Pro...

Vulnerability Description

Unspecified vulnerability in Cisco PIX 500 Series Security Appliances allows remote attackers to send arbitrary UDP packets to intranet devices via unspecified vectors involving Session Initiation Protocol (SIP) fixup commands, a different issue than CVE-2006-4032. NOTE: the vendor, after working with the researcher, has been unable to reproduce the issue

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:N/I:P/A:N
Confidentiality
NONE
Integrity
PARTIAL
Availability
NONE

Affected Products

VendorProductVersions
CiscoPix Firewall 501All versions
CiscoPix Firewall 506All versions
CiscoPix Firewall 515All versions
CiscoPix Firewall 515EAll versions
CiscoPix Firewall 520All versions
CiscoPix Firewall 525All versions
CiscoPix Firewall 535All versions
CiscoPix Firewall Software6.3

References

FAQ

What is CVE-2006-4194?

CVE-2006-4194 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Unspecified vulnerability in Cisco PIX 500 Series Security Appliances allows remote attackers to send arbitrary UDP packets to intranet devices via unspecified vectors involving Session Initiation Pro...

How severe is CVE-2006-4194?

CVE-2006-4194 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-4194?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Pix Firewall 501, Cisco Pix Firewall 506, Cisco Pix Firewall 515, Cisco Pix Firewall 515E, Cisco Pix Firewall 520.