CVSS: 5.0EPSS: 0%CPEs: 31EXPL: 0CVE-2003-0260
https://notcve.org/view.php?id=CVE-2003-0260
Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 2.x.x through 3.6.7A allow remote attackers to cause a denial of service (slowdown and possibly reload) via a flood of malformed ICMP packets. Concentradores de Cisco de la serie VPN 3000 y Cisco VPN 3002 Hardware Client 2.x.x hasta 3.6.7A permiten que atacantes remotos causen una denegación de servicio (ralentización y posiblemente recarga) mediante una inundación con paquetes ICMP mal construídos. • http://www.cisco.com/warp/public/707/cisco-sa-20030507-vpn3k.shtml http://www.kb.cert.org/vuls/id/221164 https://exchange.xforce.ibmcloud.com/vulnerabilities/11956 •
CVSS: 7.5EPSS: 0%CPEs: 20EXPL: 0CVE-2002-1098
https://notcve.org/view.php?id=CVE-2002-1098
Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, adds an "HTTPS on Public Inbound (XML-Auto)(forward/in)" rule but sets the protocol to "ANY" when the XML filter configuration is enabled, which ultimately allows arbitrary traffic to pass through the concentrator. • http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-pub.shtml http://www.iss.net/security_center/static/10023.php http://www.securityfocus.com/bid/5614 •
CVSS: 7.5EPSS: 0%CPEs: 17EXPL: 0CVE-2002-1096
https://notcve.org/view.php?id=CVE-2002-1096
Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.1, allows restricted administrators to obtain user passwords that are stored in plaintext in HTML source code. • http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-pub.shtml http://www.iss.net/security_center/static/10019.php http://www.securityfocus.com/bid/5611 •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2002-1106
https://notcve.org/view.php?id=CVE-2002-1106
Cisco Virtual Private Network (VPN) Client software 2.x.x, and 3.x before 3.5.1C, does not properly verify that certificate DN fields match those of the certificate from the VPN Concentrator, which allows remote attackers to conduct man-in-the-middle attacks. • http://www.cisco.com/warp/public/707/vpnclient-multiple2-vuln-pub.shtml http://www.securityfocus.com/bid/5652 https://exchange.xforce.ibmcloud.com/vulnerabilities/10045 •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-2002-1104
https://notcve.org/view.php?id=CVE-2002-1104
Cisco Virtual Private Network (VPN) Client software 2.x.x and 3.x before 3.0.5 allows remote attackers to cause a denial of service (crash) via TCP packets with source and destination ports of 137 (NETBIOS). • http://www.cisco.com/warp/public/707/vpnclient-multiple2-vuln-pub.shtml http://www.securityfocus.com/bid/5649 https://exchange.xforce.ibmcloud.com/vulnerabilities/10042 •