- EPSS 0.25%
- Veröffentlicht 30.11.2010 22:14:00
- Zuletzt bearbeitet 11.04.2025 00:51:21
The remote-access IPSec VPN implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices, PIX Security Appliances 500 series devices, and VPN Concentrators 3000 series devices responds to an Aggressive Mode IKE Phase I message only ...
- EPSS 4.28%
- Veröffentlicht 27.07.2006 22:04:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Internet Key Exchange (IKE) version 1 protocol, as implemented on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls, allows remote attackers to cause a denial of service (resource exhaustion) via a flood of IKE Phase-1 packets that exceed the sess...
CVE-2005-4499
- EPSS 1.91%
- Veröffentlicht 22.12.2005 11:03:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
The Downloadable RADIUS ACLs feature in Cisco PIX and VPN 3000 concentrators, when creating an ACL on the Cisco Secure Access Control Server (CS ACS), generates a random internal name for an ACL that is also used as a hidden user name and password, w...
- EPSS 0.5%
- Veröffentlicht 20.06.2005 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Cisco VPN 3000 Concentrator before 4.1.7.F allows remote attackers to determine valid groupnames by sending an IKE Aggressive Mode packet with the groupname in the ID field, which generates a response if the groupname is valid, but does not generate ...
- EPSS 0.74%
- Veröffentlicht 30.03.2005 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Cisco VPN 3000 series Concentrator running firmware 4.1.7.A and earlier allows remote attackers to cause a denial of service (device reload or drop user connection) via a crafted HTTPS packet.