CVE-2002-0852

Buffer overflows in Cisco Virtual Private Network VPN Client 3.5.4 and earlier allows remote attackers to cause a denial of service via 1 an Internet Key Exchange IKE with a large Security Parameter Index SPI payload, or 2 an IKE packet with a large number of valid payloads...

CVE-2002-0852

Cisco VPN Client 3.5.4 and earlier is affected by CVE-2002-0852 due to buffer overflows in IKE processing. The vulnerability allows remote attackers to cause a denial of service by sending crafted IKE traffic, specifically (1) an IKE message with a large Security Parameter Index (SPI) payload and...

Cisco VPN Client Multiple Vulnerabilities

...

CVE-2002-0848

Cisco VPN 5000 series concentrator hardware 6.0.21.0002 and earlier, and 5.2.23.0003 and earlier, when using RADIUS with a challenge type of Password Authentication Protocol PAP or Challenge, sends the user password in cleartext in a validation retry request, which could allow remote attackers to...

CVE-2002-0426

VPN Server module in Linksys EtherFast BEFVP41 Cable/DSL VPN Router before 1.40.1 reduces the key lengths for keys that are supplied via manual key entry, which makes it easier for attackers to crack the keys...

Security Advisory: Cisco VPN Client Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco VPN Client Multiple Vulnerabilities Revision 1.0 For Public Release 2002 August 12 UTC 1500 ---------------------------------------------------------------------- Contents Summary Affected Products Details Impact Softwar...

Security Advisory: Cisco VPN 5000 Series Concentrator RADIUS PAP Authentication Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco VPN 5000 Series Concentrator RADIUS PAP Authentication Vulnerability Revision 1.0 For Public Release 2002 August 07 UTC 1500 Contents Summary Affected Products Details Impact Software Versions and Fixes Obtaining Fixed...

Cisco VPN 5000 Series Concentrator RADIUS PAP Authentication Vulnerability

...

Phenoelit Advisory 0815 ++ -- Brick

Phenoelit Advisory wir-haben-auch-mal-was-gefunden 0815 ++- Authors FX [email protected] kim0 [email protected] Phenoelit Group http://www.phenoelit.de http://www.phenoelit.de/stuff/LucentBrick.txt Affected Products Lucent LSMS 5.5 Lucent Brick, Bridging VPN Firewall Lucent Bug ID: Not assigned...

Watchguard Firebox DoS

Specially crafted data sent to TCP/4110 causes Dynamic VPN Configuration Protocol service to crash...

KPMG-2002030: Watchguard Firebox Dynamic VPN Configuration Protocol DoS

-------------------------------------------------------------------- Title: Watchguard Firebox Dynamic VPN Configuration Protocol DoS BUG-ID: 2002030 Released: 9th Jul 2002 -------------------------------------------------------------------- Problem: ======== A malicious user can crash the Dynami...

CVE-2001-1176

Format string vulnerability in Check Point VPN-1/FireWall-1 4.1 allows a remote authenticated firewall administrator to execute arbitrary code via format strings in the control connection...

CVE-2002-0047

CVE-2002-0047 affects the CIPE VPN package; the Debian advisory notes a bug in CIPE’s packet handling where a received packet that is too short could crash the process. Affected version: CIPE prior to 1.3.0-3. The Debian DSA-104-1 advisory (and OpenVAS NASL) describe this as a DoS via a short mal...

CVE-2001-1158

Check Point VPN-1/FireWall-1 4.1 base.def contains a default macro, acceptfw1rdp, which can allow remote attackers to bypass intended restrictions with forged RDP internal protocol headers to UDP port 259 of arbitrary hosts...

CVE-2001-1158

Affected software: Check Point VPN-1/FireWall-1 (version 4.0 and 4.1 per CERT) with the default macro accept_fw1_rdp in base.def. Vulnerability: A forged RDP header sent over UDP port 259 can bypass firewall restrictions, allowing traffic to arbitrary hosts. This is achieved by abusing RDP suppor...

CVE-2001-0940

Technical details about CVE-2001-0940 are not publicly available in the provided documents; monitor for updates.

CVE-2001-0940

Buffer overflow in the GUI authentication code of Check Point VPN-1/FireWall-1 Management Server 4.0 and 4.1 allows remote attackers to execute arbitrary code via a long user name...

CVE-2001-1176

CVE-2001-1176 describes a format-string vulnerability in Check Point VPN-1/FireWall-1 4.1. The issue allows a remote authenticated firewall administrator to execute arbitrary code via format strings in the control connection. Exploitation details are not provided in the connected documents; no ex...

[AP] Cisco vpnclient buffer overflow

-- ------------------------- -- - AngryPacket Security Advisory - -- ------------------------- -- - +--------------------- -- - + advisory information +------------------ -- - author: methodic [email protected] release date: 05/28/2002 homepage: http://sec.angrypacket.com advisory...

Buffer overfrlow in Cisco vpnclient

Buffer overflow on long profile name...