CVE-2010-4354

2010-11-3022:14:00

CWE-200

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.5

Confidence

Low

EPSS

0.004

Percentile

72.5%

JSON

The remote-access IPSec VPN implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices, PIX Security Appliances 500 series devices, and VPN Concentrators 3000 series devices responds to an Aggressive Mode IKE Phase I message only when the group name is configured on the device, which allows remote attackers to enumerate valid group names via a series of IKE negotiation attempts, aka Bug ID CSCtj96108, a different vulnerability than CVE-2005-2025.

Affected configurations

Nvd

Node

ciscoasa_5500

Node

ciscopix_500

Node

ciscovpn_3000_concentrator

ciscovpn_3005_concentrator

ciscovpn_3015_concentrator

ciscovpn_3020_concentrator

ciscovpn_3030_concentator

ciscovpn_3060_concentrator

ciscovpn_3080_concentrator

VendorProductVersionCPE
ciscoasa_5500*cpe:2.3:h:cisco:asa_5500:*:*:*:*:*:*:*:*
ciscopix_500*cpe:2.3:h:cisco:pix_500:*:*:*:*:*:*:*:*
ciscovpn_3000_concentrator*cpe:2.3:h:cisco:vpn_3000_concentrator:*:*:*:*:*:*:*:*
ciscovpn_3005_concentrator*cpe:2.3:h:cisco:vpn_3005_concentrator:*:*:*:*:*:*:*:*
ciscovpn_3015_concentrator*cpe:2.3:h:cisco:vpn_3015_concentrator:*:*:*:*:*:*:*:*
ciscovpn_3020_concentrator*cpe:2.3:h:cisco:vpn_3020_concentrator:*:*:*:*:*:*:*:*
ciscovpn_3030_concentator*cpe:2.3:h:cisco:vpn_3030_concentator:*:*:*:*:*:*:*:*
ciscovpn_3060_concentrator*cpe:2.3:h:cisco:vpn_3060_concentrator:*:*:*:*:*:*:*:*
ciscovpn_3080_concentrator*cpe:2.3:h:cisco:vpn_3080_concentrator:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	asa_5500	*	cpe:2.3:h:cisco:asa_5500::::::::
cisco	pix_500	*	cpe:2.3:h:cisco:pix_500::::::::
cisco	vpn_3000_concentrator	*	cpe:2.3:h:cisco:vpn_3000_concentrator::::::::
cisco	vpn_3005_concentrator	*	cpe:2.3:h:cisco:vpn_3005_concentrator::::::::
cisco	vpn_3015_concentrator	*	cpe:2.3:h:cisco:vpn_3015_concentrator::::::::
cisco	vpn_3020_concentrator	*	cpe:2.3:h:cisco:vpn_3020_concentrator::::::::
cisco	vpn_3030_concentator	*	cpe:2.3:h:cisco:vpn_3030_concentator::::::::
cisco	vpn_3060_concentrator	*	cpe:2.3:h:cisco:vpn_3060_concentrator::::::::
cisco	vpn_3080_concentrator	*	cpe:2.3:h:cisco:vpn_3080_concentrator::::::::