Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2003-0258

Published: 27/05/2003 Updated: 30/10/2018
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Vpn 3015 Concentrator

Vulnerability Summary

Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 3.5.x up to and including 4.0.REL, when enabling IPSec over TCP for a port on the concentrator, allow remote malicious users to reach the private network without authentication.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco vpn_3015_concentrator

cisco vpn_3030_concentator

cisco vpn_3000_concentrator_series_software 3.5.4

cisco vpn_3000_concentrator_series_software 3.5.5

cisco vpn_3000_concentrator_series_software 3.6

cisco vpn_3000_concentrator_series_software 3.6.7.a

cisco vpn_3000_concentrator_series_software 3.6.7.b

cisco vpn_3000_concentrator_series_software 3.5\\(rel\\)

cisco vpn_3000_concentrator_series_software 3.5.1

cisco vpn_3000_concentrator_series_software 4.0

cisco vpn_3000_concentrator_series_software 3.6.3

cisco vpn_3005_concentrator_software 4.0.1

cisco vpn_3060_concentrator

cisco vpn_3080_concentrator

cisco vpn_3000_concentrator_series_software 3.6.1

cisco vpn_3000_concentrator_series_software 3.6.7d

cisco vpn_3000_concentrator_series_software 3.6.7.c

cisco vpn_3000_concentrator_series_software 3.6.7.d

cisco vpn_3000_concentrator_series_software 3.5.2

cisco vpn_3000_concentrator_series_software 3.5.3

cisco vpn_3000_concentrator_series_software 3.6.5

cisco vpn_3000_concentrator_series_software 3.6.7

cisco vpn_3002_hardware_client

Vendor Advisories

Cisco: Cisco VPN 3000 Concentrator Vulnerabilities
This advisory documents vulnerabilities for the Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client These vulnerabilities are documented as Cisco bug ID CSCea77143 (IPSec over TCP), CSCdz15393 (SSH), and CSCdt84906 (ICMP) There are workarounds available to mitigate the effects of these vulnerabilities Upgrading to the ...

References

NVD-CWE-Otherhttp://www.cisco.com/warp/public/707/cisco-sa-20030507-vpn3k.shtmlhttp://www.kb.cert.org/vuls/id/727780https://exchange.xforce.ibmcloud.com/vulnerabilities/11954https://nvd.nist.govhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20030507-vpn3khttps://www.kb.cert.org/vuls/id/727780
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040privilege escalationCVE-2024-4112CVE-2024-32872man-in-the-middleCVE-2024-32788bypassCVE-2024-3400CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook