Cisco has not found a vulnerability in PIX

After two weeks of investigation at the request of an independent security researcher, Cisco has confirmed that it cannot find the PIX 500 Series Security Appliances vulnerability.

At the new Black Hat Conference held earlier this month, Hendrik Scholz, a VoIP developer and leading system engineer of Freenet Cityline (Germany), announced the discovery of an unpublished vulnerability. published in the PIX 500 product line. This vulnerability relates to how applications handle Session Initiation Protocol (SIP) messages.

Hendrik Scholz did not disclose much information about the vulnerability and how to exploit it. Scholz is committed to working with Cisco to address the new vulnerability.

However, in the Aug. 15 announcement, Cisco's Product Security Response Team (PSIRT) said it could not identify the vulnerability as announced by Hendrik Scholz.

According to Cisco, Scholz said that only a special SIP message sent to PIX could create an open User Datagram Protocol (UDP) connection for any device on the network, allowing an attacker. can send UDP transport to device inside network.

Cisco could not simulate a vulnerability situation based on Scholz's description presented at the Black Hat Conference. " We still continue to work with Mr. Scholz to learn about the vulnerability ," Cisco's statement said.