- EPSS 0.25%
- Published 30.11.2010 22:14:00
- Last modified 11.04.2025 00:51:21
The remote-access IPSec VPN implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices, PIX Security Appliances 500 series devices, and VPN Concentrators 3000 series devices responds to an Aggressive Mode IKE Phase I message only ...
- EPSS 4.28%
- Published 27.07.2006 22:04:00
- Last modified 03.04.2025 01:03:51
Internet Key Exchange (IKE) version 1 protocol, as implemented on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls, allows remote attackers to cause a denial of service (resource exhaustion) via a flood of IKE Phase-1 packets that exceed the sess...
CVE-2005-4499
- EPSS 1.91%
- Published 22.12.2005 11:03:00
- Last modified 03.04.2025 01:03:51
The Downloadable RADIUS ACLs feature in Cisco PIX and VPN 3000 concentrators, when creating an ACL on the Cisco Secure Access Control Server (CS ACS), generates a random internal name for an ACL that is also used as a hidden user name and password, w...
- EPSS 0.5%
- Published 20.06.2005 04:00:00
- Last modified 03.04.2025 01:03:51
Cisco VPN 3000 Concentrator before 4.1.7.F allows remote attackers to determine valid groupnames by sending an IKE Aggressive Mode packet with the groupname in the ID field, which generates a response if the groupname is valid, but does not generate ...
- EPSS 0.74%
- Published 30.03.2005 05:00:00
- Last modified 03.04.2025 01:03:51
Cisco VPN 3000 series Concentrator running firmware 4.1.7.A and earlier allows remote attackers to cause a denial of service (device reload or drop user connection) via a crafted HTTPS packet.