CVE-2013-3436
Cisco IOS GET VPN vulnerable due to default implicit GDOI policy allowing unencrypted traffic on UDP 848, enabling bypass of encryption policy for GMs and KSs. Root cause is the default configuration that permits GDOI flow; exploitation requires access to trusted internal networks. Impact is bypa...