Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Internet Key Exchange (IKE) version 1 protocol, as implemented on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls, allows remote attackers to cause a denial of service (resource exhaustion) via a flood of IKE Phase-1 packets that exceed the session expiration rate. NOTE: it has been argued that this is due to a design weakness of the IKE version 1 protocol, in which case other vendors and implementations would also be affected.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Internet过量IKE会话请求拒绝服务漏洞
Vulnerability Description
Cisco VPN 3000系列集线器允许安全、加密的访问VPN网络。 Cisco VPN 3000在处理大量的IKE会话请求报文时存在问题,远程攻击者可能利用此漏洞对设备执行拒绝服务攻击。 如果攻击者能够以比在队列中过期更快的速度发起新的IKE会话的话,就可能耗尽远程VPN集线器上的IKE资源。测试表明如果发送速度达到每秒2个报文的话目标集线器就会受到影响,如果达到每秒10个报文的话就会不可用。Main Mode报文最少为112个字节,因此每秒10个报文相当于大约每秒9,000位。如果达到了这个速度的话
CVSS Information
N/A
Vulnerability Type
N/A