Thursday, January 26, 2006

Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack

Via Cisco.

The Cisco VPN 3000 series concentrators are a family of purpose-built, remote access Virtual Private Network (VPN) platforms for data encryption and authentication.

A malicious user may be able to send a crafted HTTP (Hypertext Transfer Protocol) packet to the concentrators which may cause the device to reload and drop user connections.

Repeated exploitation of this vulnerability will create a sustained DoS (denial of service).

0 Comments:

Post a Comment

<< Home