Lucene search
K

755 matches found

NVD
NVD
added 2002/10/04 4:0 a.m.21 views

CVE-2002-1098

Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, adds an "HTTPS on Public Inbound XML-Autoforward/in" rule but sets the protocol to "ANY" when the XML filter configuration is enabled, which ultimately allows arbitrary traffic to pass through the concentrator...

7.5CVSS6.7AI score0.01317EPSS
Exploits0References3
NVD
NVD
added 2002/10/04 4:0 a.m.17 views

CVE-2002-1095

Cisco VPN 3000 Concentrator before 2.5.2F, with encryption enabled, allows remote attackers to cause a denial of service reload via a Windows-based PPTP client with the "No Encryption" option set...

5CVSS6.6AI score0.01013EPSS
Exploits0References3
NVD
NVD
added 2002/10/04 4:0 a.m.20 views

CVE-2002-1099

Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, allows remote attackers to obtain potentially sensitive information without authentication by directly accessing certain HTML pages...

5CVSS6.4AI score0.01504EPSS
Exploits0References3
Cvelist
Cvelist
added 2002/09/10 4:0 a.m.26 views

CVE-2002-1100

Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, allows remote attackers to cause a denial of service crash via a long 1 username or 2 password to the HTML login interface...

6.7AI score0.01657EPSS
Exploits0References3
CVE
CVE
added 2002/09/10 4:0 a.m.58 views

CVE-2002-1103

The CVE-2002-1103 issue affects Cisco VPN 3000 Concentrator devices running 2.2.x, 3.6(Rel), and 3.x before 3.5.5. The root cause is handling ISAKMP packets; malformed or an excessive number of ISAKMP packets can cause the device to reload, resulting in a denial of service. Attacks can be perform...

5CVSS6.7AI score0.01417EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2002/09/10 4:0 a.m.56 views

CVE-2002-1100

CVE-2002-1100 affects Cisco VPN 3000 Concentrator versions 2.2.x and 3.x prior to 3.5.3. The vulnerability allows remote attackers to trigger a denial of service (crash) by sending an excessively long username or password to the HTML login interface. The issue is evidenced by the NVD description ...

5CVSS6.8AI score0.01657EPSS
Exploits0References3Affected Software2
securityvulns
securityvulns
added 2002/09/04 12:0 a.m.35 views

Cisco Security Advisory: Cisco VPN 3000 Concentrator Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco VPN 3000 Concentrator Multiple Vulnerabilities Revision 1.0 For Public Release 2002 September 03 at 1500 UTC ---------------------------------------------------------------------- Contents Summary Affected Products Detai...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2002/09/03 12:0 a.m.17 views

Cisco VPN 3000 Series Concentrator Client - Authentication Denial of Service

Cisco VPN 3000 Series Concentrator Client - Authentication Denial of Service // source: https://www.securityfocus.com/bid/5620/info Cisco VPN 3000 series concentrators are prone to a denial of service condition when receiving an overly long username string during authentication from a VPN client...

0.7AI score
Exploits0
CERT
CERT
added 2002/09/03 12:0 a.m.40 views

Cisco VPN 3000 series concentrator does not properly handle malformed ISAKMP packets

Overview Cisco VPN 3000 series concentrators do not properly handle specially crafted Internet Security Association and Key Management Protocol ISAKMP packets, which can cause a vulnerable device to reload, denying service to legitimate users. Description According to information on the Cisco web...

5CVSS7AI score0.01417EPSS
Exploits0References7
CVE
CVE
added 2001/09/18 4:0 a.m.55 views

CVE-2001-0428

CVE-2001-0428 affects Cisco VPN 3000 series concentrators prior to 2.5.2(F). The vulnerability arises from handling IP packets with an invalid IP option, enabling remote denial of service. The available sources list the affected product and the impact (DoS) but do not provide details on exploits,...

5CVSS7AI score0.01675EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2001/09/18 4:0 a.m.48 views

CVE-2001-0427

The CVE-2001-0427 issue affects Cisco VPN 3000 series concentrators prior to version 2.5.2(F). An attacker can trigger a denial-of-service by flooding SSL or telnet login services with invalid login attempts, exploiting improper disconnect behavior after repeated failures. Impact is network-based...

7.1CVSS6.7AI score0.02518EPSS
Exploits0References3Affected Software6
NVD
NVD
added 2001/06/18 4:0 a.m.9 views

CVE-2001-0427

Cisco VPN 3000 series concentrators before 2.5.2F allow remote attackers to cause a denial of service via a flood of invalid login requests to 1 the SSL service, or 2 the telnet service, which do not properly disconnect the user after several failed login attempts...

7.1CVSS6.7AI score0.02518EPSS
Exploits0References3
securityvulns
securityvulns
added 2001/04/13 12:0 a.m.54 views

DoS против Cisco VPN 3000 (ip option)

Исопльзуя некорректные ip options можно вызвать отказ маршрутизатора в пределах локального сегмента...

0.4AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2001/04/13 12:0 a.m.45 views

Security Advisory: Cisco VPN3000 Concentrator IP Options Vulnerabil

-----BEGIN PGP SIGNED MESSAGE----- Cisco Security Advisory: VPN 3000 Concentrator IP Options Vulnerability ============================================================================= Revision 1.0 For Public Release 2001 April 12 at 1500 UTC...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2001/03/29 12:0 a.m.52 views

Cisco Security Advisory: Cisco Catalyst SSH Protocol Mismatch Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Cisco Security Advisory: VPN3000 Concentrator TELNET Vulnerability ========================================================================== Revision 1.0 For Public Release 2001 March 28 08:00 UTC -0800...

Exploits0
Rows per page
Query Builder