Vpn 3000 Concentrator Series Software Security Vulnerabilities and Issues — Vpn 3000 Concentrator Series Software CVE List

Lucene search

CiscoVpn 3000 Concentrator Series Software

4 matches found

CVE•added 2005/12/22 11:3 a.m.•59 views

CVE-2005-4499

The Downloadable RADIUS ACLs feature in Cisco PIX and VPN 3000 concentrators, when creating an ACL on the Cisco Secure Access Control Server (CS ACS), generates a random internal name for an ACL that is also used as a hidden user name and password, which allows remote attackers to gain privileges b...

7.5CVSS7.4AI score0.01897EPSS

CVE•added 2005/04/03 5:0 a.m.•48 views

CVE-2005-0943

Cisco VPN 3000 series Concentrator running firmware 4.1.7.A and earlier allows remote attackers to cause a denial of service (device reload or drop user connection) via a crafted HTTPS packet.

5CVSS7.1AI score0.00743EPSS

CVE•added 2005/11/18 9:3 p.m.•48 views

CVE-2005-3669

Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in multiple Cisco products allow remote attackers to cause a denial of service (device reset) via certain malformed IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to...

5CVSS6.9AI score0.09461EPSS

CVE•added 2005/06/21 4:0 a.m.•44 views

CVE-2005-2025

Cisco VPN 3000 Concentrator before 4.1.7.F allows remote attackers to determine valid groupnames by sending an IKE Aggressive Mode packet with the groupname in the ID field, which generates a response if the groupname is valid, but does not generate a response for an invalid groupname.

5CVSS6.6AI score0.00501EPSS