PT-2003-1469 · Cisco · Cisco Vpn 3002 Hardware Client+1

Publicado

2003-05-08

Atualizado

2018-10-30

CVE-2003-0260

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions: Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client versions 2.x.x through 3.6.7A

Description: The issue allows remote attackers to cause a denial of service, resulting in slowdown and possible reload, by flooding the system with malformed ICMP packets.

Recommendations: For Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client versions 2.x.x through 3.6.7A, consider implementing rate limiting on ICMP packets to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2003-0260

Produtos afetados

Cisco Vpn 3000 Series Concentrators

Cisco Vpn 3002 Hardware Client

PT-2003-1469 · Cisco · Cisco Vpn 3002 Hardware Client+1

CVE-2003-0260

Identificadores relacionados

Produtos afetados

Referências · 4