755 matches found
CVE-2002-1098
Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, adds an "HTTPS on Public Inbound XML-Autoforward/in" rule but sets the protocol to "ANY" when the XML filter configuration is enabled, which ultimately allows arbitrary traffic to pass through the concentrator...
CVE-2002-1095
Cisco VPN 3000 Concentrator before 2.5.2F, with encryption enabled, allows remote attackers to cause a denial of service reload via a Windows-based PPTP client with the "No Encryption" option set...
CVE-2002-1099
Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, allows remote attackers to obtain potentially sensitive information without authentication by directly accessing certain HTML pages...
CVE-2002-1100
Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, allows remote attackers to cause a denial of service crash via a long 1 username or 2 password to the HTML login interface...
CVE-2002-1103
The CVE-2002-1103 issue affects Cisco VPN 3000 Concentrator devices running 2.2.x, 3.6(Rel), and 3.x before 3.5.5. The root cause is handling ISAKMP packets; malformed or an excessive number of ISAKMP packets can cause the device to reload, resulting in a denial of service. Attacks can be perform...
CVE-2002-1100
CVE-2002-1100 affects Cisco VPN 3000 Concentrator versions 2.2.x and 3.x prior to 3.5.3. The vulnerability allows remote attackers to trigger a denial of service (crash) by sending an excessively long username or password to the HTML login interface. The issue is evidenced by the NVD description ...
Cisco Security Advisory: Cisco VPN 3000 Concentrator Multiple Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco VPN 3000 Concentrator Multiple Vulnerabilities Revision 1.0 For Public Release 2002 September 03 at 1500 UTC ---------------------------------------------------------------------- Contents Summary Affected Products Detai...
Cisco VPN 3000 Series Concentrator Client - Authentication Denial of Service
Cisco VPN 3000 Series Concentrator Client - Authentication Denial of Service // source: https://www.securityfocus.com/bid/5620/info Cisco VPN 3000 series concentrators are prone to a denial of service condition when receiving an overly long username string during authentication from a VPN client...
Cisco VPN 3000 series concentrator does not properly handle malformed ISAKMP packets
Overview Cisco VPN 3000 series concentrators do not properly handle specially crafted Internet Security Association and Key Management Protocol ISAKMP packets, which can cause a vulnerable device to reload, denying service to legitimate users. Description According to information on the Cisco web...
CVE-2001-0428
CVE-2001-0428 affects Cisco VPN 3000 series concentrators prior to 2.5.2(F). The vulnerability arises from handling IP packets with an invalid IP option, enabling remote denial of service. The available sources list the affected product and the impact (DoS) but do not provide details on exploits,...
CVE-2001-0427
The CVE-2001-0427 issue affects Cisco VPN 3000 series concentrators prior to version 2.5.2(F). An attacker can trigger a denial-of-service by flooding SSL or telnet login services with invalid login attempts, exploiting improper disconnect behavior after repeated failures. Impact is network-based...
CVE-2001-0427
Cisco VPN 3000 series concentrators before 2.5.2F allow remote attackers to cause a denial of service via a flood of invalid login requests to 1 the SSL service, or 2 the telnet service, which do not properly disconnect the user after several failed login attempts...
DoS против Cisco VPN 3000 (ip option)
Исопльзуя некорректные ip options можно вызвать отказ маршрутизатора в пределах локального сегмента...
Security Advisory: Cisco VPN3000 Concentrator IP Options Vulnerabil
-----BEGIN PGP SIGNED MESSAGE----- Cisco Security Advisory: VPN 3000 Concentrator IP Options Vulnerability ============================================================================= Revision 1.0 For Public Release 2001 April 12 at 1500 UTC...
Cisco Security Advisory: Cisco Catalyst SSH Protocol Mismatch Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Cisco Security Advisory: VPN3000 Concentrator TELNET Vulnerability ========================================================================== Revision 1.0 For Public Release 2001 March 28 08:00 UTC -0800...