Description
Buffer overflows in Cisco Virtual Private Network (VPN) Client 3.5.4 and earlier allows remote attackers to cause a denial of service via (1) an Internet Key Exchange (IKE) with a large Security Parameter Index (SPI) payload, or (2) an IKE packet with a large number of valid payloads.
Affected products
- Cisco / vpn_client3.5.1 – 3.5.1
- Cisco / vpn_client3.5.1 – 3.5.1
- Cisco / vpn_client3.5.1 – 3.5.1
- Cisco / vpn_client3.5.1 – 3.5.1
- Cisco / vpn_client3.5.2 – 3.5.2
- Cisco / vpn_client3.5.2 – 3.5.2
- Cisco / vpn_client3.5.2 – 3.5.2
- Cisco / vpn_client3.5.2 – 3.5.2
References
Updated 40m ago · 2 sources