Vulnerabilities in the Internet Key Exchange Xauth Implementation - Cisco Systems

Cisco Internetwork Operating System IOS Software release trains 12.2T, 12.3 and 12.3T may contain vulnerabilities in processing certain Internet Key Exchange IKE Xauth messages when configured to be an Easy VPN Server. Successful exploitation of these vulnerabilities may permit an unauthorized us...

CVE-2005-2105

CVE-2005-2105 : Affects Cisco IOS 12.2T through 12.4. A faulty RADIUS implementation allows remote attackers to bypass AAA RADIUS authentication when the fallback method is set to none by using a long username. This is a remote authentication bypass taking advantage of the none fallback configura...

CVE-2005-1058

Cisco IOS 12.2T, 12.3 and 12.3T, when processing an ISAKMP profile that specifies XAUTH authentication after Phase 1 negotiation, may not process certain attributes in the ISAKMP profile that specifies XAUTH, which allows remote attackers to bypass XAUTH and move to Phase 2 negotiations...

CVE-2005-0186

CVE-2005-0186 affects Cisco IOS releases 12.1YD, 12.2T, 12.3 and 12.3T when ITS/CME/SRST are active. A malformed SCCP control message can trigger a device reboot (DoS). Answer: vulnerable component is IOS Telephony Service/CME/SRST handling of SCCP; root cause is malformed control protocol messag...