Courses:

Offensive Countermeasures: The Art Of Active Defense: SANSFIRE June 15-16, Blackhat USA July 27-28 & 29-30


Defensive Countermeasures: Foundations for Becoming A Devious Defender: Blackhat USA July 27-28 & 29-30


Conferences:

Check out the entire PaulDotCom crew at BsidesRI June 14-15th!



Subscribe:

Blog:
Videos:
Podcast:


PaulDotCom EspaƱol


Hack Naked TV


Hack Naked At Night


Stogie Geeks


Sponsored By:


www.coresecurity.com


www.tenablesecurity.com


www.sans.org



Follow Us On:


twitter.com/pauldotcom

PaulDotCom YouTube Channel


Cisco VPN 3000 DoS Vulnerability - NOT FIXED

By
Paul Asadoorian
on January 30, 2006 6:37 PM |

I just received word from an authoritative source on this vulnerability (actually the person that found it) and was informed that version 4.7.2B does not fix the DoS vulnerability. The only way to mitigate the risk is to block TCP port 80 on your concentrator (or upstream router/firewall), otherwise an attacker could send a stream of packets that takes out the concentrator and forces you to power cycle the box to get it back. Ouch.

Full Article

Thank you to Eldon Sprickerhoff for pointing this out.

.com

Categories: