Cisco VPN Concentrator LAN-to-LAN IPSEC Tunnel Termination DoS (Bug ID CSCdx54675)
Medium Nessus Network Monitor Plugin ID 2239
SynopsisThe remote host is vulnerable to a Denial of Service (DoS) attack.
DescriptionThe remote VPN concentrator is subject to a LAN-to-LAN IPSEC tunnel vulnerability that allows remote attackers to cause a denial of service. Existing associations might be removed when a new connection is made and no check is done in order to determine if the connection comes from the proper network. This vulnerability is documented as Cisco bug ID CSCdx54675