CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
82.0%
Cisco VPN 3000 Concentrator before 2.5.2(F), with encryption enabled, allows remote attackers to cause a denial of service (reload) via a Windows-based PPTP client with the “No Encryption” option set.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | vpn_3000_concentrator_series_software | 2.0 | cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.0:*:*:*:*:*:*:* |
cisco | vpn_3000_concentrator_series_software | 2.5.2.a | cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.a:*:*:*:*:*:*:* |
cisco | vpn_3000_concentrator_series_software | 2.5.2.b | cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.b:*:*:*:*:*:*:* |
cisco | vpn_3000_concentrator_series_software | 2.5.2.c | cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.c:*:*:*:*:*:*:* |
cisco | vpn_3000_concentrator_series_software | 2.5.2.d | cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:2.5.2.d:*:*:*:*:*:*:* |
cisco | secure_access_control_server | 2.6.3 | cpe:2.3:a:cisco:secure_access_control_server:2.6.3:*:windows_nt:*:*:*:*:* |
cisco | vpn_3002_hardware_client | * | cpe:2.3:a:cisco:vpn_3002_hardware_client:*:*:*:*:*:*:*:* |