|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[sec-adv] Cisco VPN 3000 Concentrator Multiple Vulnerabilities
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Thu May 08 2003 - 07:56:48 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
Cisco VPN 3000 Concentrator Multiple Vulnerabilities
READ ONLINE:
http://www.secunia.com/advisories/8746/
CRITICAL:
Moderately critical
IMPACT:
Security Bypass, DoS
WHERE:
From remote
OPERATING SYSTEM:
Cisco VPN 3000 Concentrator
DESCRIPTION:
Cisco has released a security bulletin describing three
vulnerabilities in VPN 3000 Concentrator. These allow malicious
people to access internal hosts or cause a Denial of Service.
If IPSec has been configured to use TCP, it is possible to access
hosts on the private network on the same port that is used for IPSec
communication. However, this requires that the hosts on the private
network has been assigned routeable addresses or that a malicious
person has access to an external host where traffic is routed to the
private network.
Another vulnerability exists in the SSH service. It is possible to
cause the VPN 3000 Concentrator to reload by sending a malformed
initialization packet.
The third vulnerability allows malicious people to slow down the VPN
3000 Concentrator by sending malformed ICMP messages to any
interface.
SOLUTION:
An update is available from:
http://www.cisco.com/public/sw-center/vpn/3000/
You may also prevent these attacks by filtering traffic at your
perimeter firewall and by creating a filter on the private interface
of the VPN 3000 Concentrator to prevent traffic to the private
network.
ORIGINAL ADVISORY:
http://www.cisco.com/warp/public/707/cisco-sa-20030507-vpn3k.shtml
----------------------------------------------------------------------
Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]