CVE-2003-0258 Information

Description

Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 3.5.x through 4.0.REL when enabling IPSec over TCP for a port on the concentrator allow remote attackers to reach the private network without authentication.

Reference

http://www.cisco.com/warp/public/707/cisco-sa-20030507-vpn3k.shtml http://www.kb.cert.org/vuls/id/727780 https://exchange.xforce.ibmcloud.com/vulnerabilities/11954