Vulnerabilities > CVE-2002-1101 - Denial-Of-Service vulnerability in Cisco products

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

exploit available

NVD

Published: 2002-10-04

Updated: 2018-10-30

Summary

Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), and 3.x before 3.5.5, allows remote attackers to cause a denial of service via a long user name.

Part	Description	Count
OS	Cisco Cisco VPN 3000 Concentrator Series Software 2.0 Cisco VPN 3000 Concentrator Series Software 2.5.2.A Cisco VPN 3000 Concentrator Series Software 2.5.2.B Cisco VPN 3000 Concentrator Series Software 2.5.2.C Cisco VPN 3000 Concentrator Series Software 2.5.2.D Cisco VPN 3000 Concentrator Series Software 2.5.2.F Cisco VPN 3000 Concentrator Series Software 3.0 Cisco VPN 3000 Concentrator Series Software 3.0\(Rel\) Cisco VPN 3000 Concentrator Series Software 3.0.3.A Cisco VPN 3000 Concentrator Series Software 3.0.3.B Cisco VPN 3000 Concentrator Series Software 3.0.4 Cisco VPN 3000 Concentrator Series Software 3.1 Cisco VPN 3000 Concentrator Series Software 3.1\(Rel\) Cisco VPN 3000 Concentrator Series Software 3.1.1 Cisco VPN 3000 Concentrator Series Software 3.1.2 Cisco VPN 3000 Concentrator Series Software 3.1.4 Cisco VPN 3000 Concentrator Series Software 3.5\(Rel\) Cisco VPN 3000 Concentrator Series Software 3.5.1 Cisco VPN 3000 Concentrator Series Software 3.5.2 Cisco VPN 3000 Concentrator Series Software 3.5.3 Cisco VPN 3000 Concentrator Series Software 3.5.4 Cisco VPN 3000 Concentrator Series Software 3.6\(Rel\)	22
Application	Cisco Cisco VPN 3002 Hardware Client *	1

description	Cisco VPN 3000 Series Concentrator Client Authentication Denial Of Service Vulnerability. CVE-2002-1101. Dos exploit for hardware platform
id	EDB-ID:21770
last seen	2016-02-02
modified	2002-09-03
published	2002-09-03
reporter	Phenoelit
source	https://www.exploit-db.com/download/21770/
title	Cisco VPN 3000 Series Concentrator Client Authentication Denial of Service Vulnerability