Cisco VPN 3000 Concentrator LAN-to-LAN IPSEC Tunnel Connection Termination DoS (CSCdx54675)

medium Nessus Plugin ID 11296

Synopsis

The remote device is missing a vendor-supplied security patch.

Description

The remote VPN concentrator is subject to a LAN-to-LAN IPSEC tunnel vulnerability which allows remote attackers to cause a denial of service. Existing associations might be removed when a new connection is made and no check is done in order to determine if the connection comes from the proper network.

This vulnerability is documented as Cisco bug ID CSCdx54675

Solution

http://www.nessus.org/u?d2dd6759

Plugin Details

Severity: Medium

ID: 11296

File Name: CSCdx54675.nasl

Version: 1.20

Type: local

Family: CISCO

Published: 3/1/2003

Updated: 6/27/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.4

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/o:cisco:ios

Required KB Items: SNMP/sysDesc, SNMP/community, CISCO/model

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 9/3/2002

Reference Information

CVE: CVE-2002-1102

BID: 5622