Vulnerability Details CVE-2002-1093
HTML interface for Cisco VPN 3000 Concentrator 2.x.x and 3.x.x before 3.0.3(B) allows remote attackers to cause a denial of service (CPU consumption) via a long URL request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.6%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-pub.shtml
- http://www.iss.net/security_center/static/10018.php
- http://www.securityfocus.com/bid/5615
- http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-pub.shtml
- http://www.iss.net/security_center/static/10018.php
- http://www.securityfocus.com/bid/5615
Products affected by CVE-2002-1093
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.0
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.a
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.b
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.c
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.d
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.f
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.0
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.0(rel)
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.0.3.a