Denial of Service Vulnerability in Cisco VPN 3000 Concentrator
CVE-2002-1102

Currently unrated

Key Information:

Vendor: Cisco
Status: Vpn 3000 Concentrator Series Software; Vpn 3002 Hardware Client
Vendor: CVE Published:; 4 October 2002

Summary

The LAN-to-LAN IPSEC functionality in Cisco's VPN 3000 Concentrator allows remote attackers to disrupt service by establishing an incoming LAN-to-LAN connection that conflicts with an existing security association tied to another device on the remote network. This disruption causes the concentrator to terminate the previous connection, effectively resulting in a denial of service.

References

http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-...

vendor-advisoryx_refsource_CISCO

https://exchange.xforce.ibmcloud.com/vulnerabilities/10027

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/5622

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Oct 4, 2002
Vulnerability Reserved
Sep 6, 2002