CVE-2005-2025
N/A
N/A
Summary
Cisco VPN 3000 Concentrator before 4.1.7.F allows remote attackers to determine valid groupnames by sending an IKE Aggressive Mode packet with the groupname in the ID field, which generates a response if the groupname is valid, but does not generate a response for an invalid groupname.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.nta-monitor.com/news/vpn-flaws/cisco/VPN-Concentrator/index.htm
- http://www.securityfocus.com/bid/13992
- http://www.vupen.com/english/advisories/2005/0822
References
- http://www.nta-monitor.com/news/vpn-flaws/cisco/VPN-Concentrator/index.htm
- http://www.securityfocus.com/bid/13992
- http://www.vupen.com/english/advisories/2005/0822
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.