Vulnerability Details CVE-2002-1098
Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, adds an "HTTPS on Public Inbound (XML-Auto)(forward/in)" rule but sets the protocol to "ANY" when the XML filter configuration is enabled, which ultimately allows arbitrary traffic to pass through the concentrator.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.9%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-pub.shtml
- http://www.iss.net/security_center/static/10023.php
- http://www.securityfocus.com/bid/5614
- http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-pub.shtml
- http://www.iss.net/security_center/static/10023.php
- http://www.securityfocus.com/bid/5614
Products affected by CVE-2002-1098
-
cpe:2.3:a:cisco:vpn_3002_hardware_client:-
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.0
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.a
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.b
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.c
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.d
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.f
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.0
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.0(rel)
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.0.3.a
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.0.3.b
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.0.4
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.1
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.1(rel)
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.1.1
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.1.2
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.1.4
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.5(rel)
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.5.1
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:3.5.2