CVE-2001-0427

Name of the Vulnerable Software and Affected Versions Cisco VPN 3000 series concentrators versions prior to 2.5.2(F)

Description The issue allows remote attackers to cause a denial of service via a flood of invalid login requests to the SSL service or the telnet service. These services do not properly disconnect the user after several failed login attempts.

Recommendations For versions prior to 2.5.2(F), update to version 2.5.2(F) or later to resolve the issue. As a temporary workaround, consider restricting access to the SSL and telnet services to minimize the risk of exploitation.