CVE-2004-0163

Name of the Vulnerable Software and Affected Versions Sygate Secure Enterprise (SSE) versions 3.5MR3 and earlier

Description The issue allows remote attackers to cause a denial of service, specifically resource exhaustion, by capturing a session and repeatedly replaying it. This is due to the software not changing the key used to encrypt data.

Recommendations For versions 3.5MR3 and earlier, consider implementing measures to prevent session replay attacks, such as regenerating encryption keys after a session is closed, until a patch is available.