Vulnerability Details CVE-2001-0428
Cisco VPN 3000 series concentrators before 2.5.2(F) allow remote attackers to cause a denial of service via an IP packet with an invalid IP option.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.1%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.cisco.com/warp/public/707/vpn3k-ipoptions-vuln-pub.shtml
- http://www.osvdb.org/1786
- http://www.securityfocus.com/bid/2573
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6360
- http://www.cisco.com/warp/public/707/vpn3k-ipoptions-vuln-pub.shtml
- http://www.osvdb.org/1786
- http://www.securityfocus.com/bid/2573
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6360
Products affected by CVE-2001-0428
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.a
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.b
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.c
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.d