Cisco: >> Vpn 3000 Concentrator Series Software >> 3.6(rel) Security Vulnerabilities
Cisco VPN 3000 Concentrator 3.6(Rel) and earlier, and 2.x.x, when configured to use internal authentication with group accounts and without any user accounts, allows remote VPN clients to log in using PPTP or IPSEC user authentication.
CVSS Score
7.5
EPSS Score
0.006
Published
2002-10-04
Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), and 3.x before 3.5.5, allows remote attackers to cause a denial of service via a long user name.
CVSS Score
5.0
EPSS Score
0.105
Published
2002-10-04
Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), and 3.x before 3.5.5, allows remote attackers to cause a denial of service via (1) malformed or (2) large ISAKMP packets.
CVSS Score
5.0
EPSS Score
0.004
Published
2002-10-04