Denial of Service Vulnerability in Cisco VPN 3000 Concentrator
CVE-2002-1103

Currently unrated

Key Information:

Vendor: Cisco
Status: Vpn 3000 Concentrator Series Software; Vpn 3002 Hardware Client
Vendor: CVE Published:; 4 October 2002

Summary

The Cisco VPN 3000 Concentrator contains a vulnerability that may allow remote attackers to execute a denial of service attack. This can occur through the manipulation of malformed or excessively large ISAKMP packets, leading to a disruption in the normal functioning of the device. System administrators are urged to review the product configurations and apply necessary patches to safeguard against potential exploits targeting this vulnerability.

References

http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-...

vendor-advisoryx_refsource_CISCO

http://www.kb.cert.org/vuls/id/761651

third-party-advisoryx_refsource_CERT-VN

Timeline

Vulnerability published
Oct 4, 2002
Vulnerability Reserved
Sep 6, 2002