8408 matches found
CVE-2003-0259
Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 2.x.x through 3.6.7 allows remote attackers to cause a denial of service reload via a malformed SSH initialization packet...
CVE-2003-0260
Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 2.x.x through 3.6.7A allow remote attackers to cause a denial of service slowdown and possibly reload via a flood of malformed ICMP packets...
CVE-2003-0260
Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 2.x.x through 3.6.7A allow remote attackers to cause a denial of service slowdown and possibly reload via a flood of malformed ICMP packets...
CVE-2003-0258
CVE-2003-0258 affects Cisco VPN 3000 Series Concentrators and Cisco VPN 3002 Hardware Client (3.5.x–4.0.REL). When IPSec over TCP is enabled for a port on the concentrator, traffic forwarded on that port may be delivered to all hosts on the protected network, not only those using IPsec, enabling ...
CVE-2003-0258
Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 3.5.x through 4.0.REL, when enabling IPSec over TCP for a port on the concentrator, allow remote attackers to reach the private network without authentication...
CVE-2003-0259
Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 2.x.x through 3.6.7 allows remote attackers to cause a denial of service reload via a malformed SSH initialization packet...
CVE-2003-0259
The CVE-2003-0259 issue affects Cisco VPN 3000 Series Concentrators and the Cisco VPN 3002 Hardware Client (2.x–3.6.7). A malformed SSH initialization packet during the initial SSH session setup could cause the device to reload, yielding a denial-of-service condition. CERT/CC and Cisco advisories...
CVE-2003-0260
Cisco VPN 3000 Series Concentrators and Cisco VPN 3002 Hardware Client (2.x.x–3.6.7A) are affected by a DoS vulnerability caused by a flood of malformed ICMP packets, potentially degrading performance or causing a reload. The issue is triggered remotely and is documented across NVD and CERT advis...
Cisco VPN 3000 Concentrator Vulnerabilities
...
Multiple Cisco VPN 3000 bugs
IP filtering bypassing if IPSec enabled, SSH DoS, ICMP flood DoS...
Multiple bugs in Cisco VPN 3000
No description provided...
Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerabilities Revision 1.0 For Public Release 2003 May 7 at 1600 UTC GMT ---------------------------------------------------------------------- Contents Summary Affected Products Details Impact...
Cisco VPN 3000 Series Multiple Vulnerabilities (CSCdea77143, CSCdz15393, CSCdt84906)
The remote Cisco VPN 3000 concentrator is affected by several vulnerabilities that could allow an attacker to use this device to break into a VPN, disable the remote device by sending a malformed SSH initialization packet or disable the remote device by sending a flood of malformed ICMP packets...
[SECURITY] [DSA 295-1] New pptpd packages fix remote root exploit
-------------------------------------------------------------------------- Debian Security Advisory DSA 295-1 [email protected] http://www.debian.org/security/ Martin Schulze April 30th, 2003 http://www.debian.org/security/faq -...
PoPToP PPTP server remotely exploitable buffer overflow
Versions older than 1.1.4-b3 and 1.1.3-20030409 affected. This seems to be exploitable only with Linux. PPTP? ----- PPTP-over-IPSEC is commonly used to create VPNs. Windows plays quite nicely with it. problem ------- PPTP packet header contain 16bit length which specifies the full size of the...
Linksys BEFVP4 - SNMP Community String Information Disclosure
source: https://www.securityfocus.com/bid/7317/info Linksys BEFVP4 VPN router has been reported prone to a sensitive information disclosure vulnerability. It has been reported that SNMP community strings which, are world readble by default, contain sensitive information pertaining to the internal...
CVE-2002-0848
Cisco VPN 5000 series concentrator hardware 6.0.21.0002 and earlier, and 5.2.23.0003 and earlier, when using RADIUS with a challenge type of Password Authentication Protocol PAP or Challenge, sends the user password in cleartext in a validation retry request, which could allow remote attackers to...
CVE-2002-0853
Cisco Virtual Private Network VPN Client 3.5.4 and earlier allows remote attackers to cause a denial of service CPU consumption via a packet with a zero-length payload...
CVE-2002-1491
The Cisco VPN 5000 Client for MacOS before 5.2.2 records the most recently used login password in plaintext when saving "Default Connection" settings, which could allow local users to gain privileges...
CVE-2002-0853
CVE-2002-0853 affects Cisco VPN Client 3.5.4 and earlier. The vulnerability allows remote attackers to cause a denial of service (CPU consumption) by sending a packet with a zero-length payload. No root cause details or affected versions beyond the stated range are provided in the supplied docume...