Cisco VPN Concentrator LAN-to-LAN IPSEC Tunnel Termination DoS (Bug ID CSCdx54675)

medium Nessus Network Monitor Plugin ID 2239

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack.

Description

The remote VPN concentrator is subject to a LAN-to-LAN IPSEC tunnel vulnerability that allows remote attackers to cause a denial of service. Existing associations might be removed when a new connection is made and no check is done in order to determine if the connection comes from the proper network. This vulnerability is documented as Cisco bug ID CSCdx54675

Solution

http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-pub.shtml

Plugin Details

Severity: Medium

ID: 2239

Family: SNMP

Published: 9/3/2004

Updated: 3/6/2019

Nessus ID: 11296

Risk Information

VPR

Risk Factor: Low

Score: 3.4

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS v3

Risk Factor: Medium

Base Score: 5.3

Temporal Score: 4.6

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:cisco:vpn_3000_concentrator

Reference Information

CVE: CVE-2002-1102

BID: 5622