Cisco VPN 3000 Concentrator Malformed ISAKMP Packet Remote DoS (CSCdy38035)

This script is (C) 2003-2014 Tenable Network Security, Inc.


Synopsis :

The remote VPN concentrator is affected by ISAKMP package processing
vulnerability.

Description :

According to its banner, the remote VPN concentrator is subject to an
ISAKMP package processing vulnerability. Malformed or a very large
number of ISAKMP packets might cause a reload of the concentrator. The
vulnerability is aggravated if debug is turned on. This vulnerability
is documented as Cisco bug ID CSCdy38035.

See also :

http://www.nessus.org/u?d2dd6759

Solution :

Apply vendor-supplied patches.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)

Family: CISCO

Nessus Plugin ID: 11297 (CSCdy38035.nasl)

Bugtraq ID:

CVE ID: CVE-2002-1103