Lucene search
MitreCVE-2004-0163HistorySep 28, 2004 - 4:00 a.m.
CVE-2004-0163
2004-09-2804:00:00
mitre
web.nvd.nist.gov
26
sygate
sse
encryption
vulnerability
resource exhaustion
denial of service
cve-2004-0163
nvd
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.6
Confidence
High
EPSS
0.009
Percentile
83.0%
Sygate Secure Enterprise (SSE) 3.5MR3 and earlier does not change the key used to encrypt data, which allows remote attackers to cause a denial of service (resource exhaustion) by capturing a session and repeatedly replaying the session.
Affected configurations
Node
sygate_technologiessecure_enterpriseRange≤3.5mr3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| sygate_technologies | secure_enterprise | * | cpe:2.3:a:sygate_technologies:secure_enterprise:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2004-0163
2004-08-18 04:00:00
securityvulns
securityvulns
Corsaire Security Advisory - Sygate Secure Enterprise replay issue
2004-08-11 00:00:00
nvd
nvd
CVE-2004-0163
2004-09-28 04:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.6
Confidence
High
EPSS
0.009
Percentile
83.0%
Related for CVE-2004-0163