Cisco VPN 3000 Series Concentrators and 3002 Client Remote Access Vulnerability
CVE-2003-0258

Currently unrated

Key Information:

Vendor: Cisco
Status: Vpn 3015 Concentrator; Vpn 3030 Concentator; Vpn 3060 Concentrator; Vpn 3080 Concentrator
Vendor: CVE Published:; 27 May 2003

Summary

The vulnerability in Cisco VPN 3000 series concentrators and the Cisco VPN 3002 Hardware Client arises when enabling IPSec over TCP on a port, allowing remote attackers to access the private network without proper authentication. This exposes sensitive data and network resources, underscoring the need for robust security configurations.

References

http://www.kb.cert.org/vuls/id/727780

third-party-advisoryx_refsource_CERT-VN

http://www.cisco.com/warp/public/707/cisco-sa-20030507-vp...

vendor-advisoryx_refsource_CISCO

https://exchange.xforce.ibmcloud.com/vulnerabilities/11954

vdb-entryx_refsource_XF

Timeline

Vulnerability published
May 27, 2003
Vulnerability Reserved
May 7, 2003