Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> CISCO >> CSCdw50657


Vulnerability Assessment Details

CSCdw50657

Vulnerability Assessment Summary
Uses SNMP to determine if a flaw is present

Detailed Explanation for this Vulnerability Assessment

The remote VPN concentrator discloses the certificate passwords
of its users in the source HTML pages of the embedded web server.

This vulnerability is documented as Cisco bug ID CSCdw50657.

Solution :
http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-pub.shtml
Network Security Threat Level: Medium

*** As Nessus solely relied on the banner of the remote host
*** this might be a false positive


Networks Security ID: 5612

Vulnerability Assessment Copyright: This script is (C) 2003 Renaud Deraison

Cables, Connectors

extreme networks SUMMIT X440-24P 24-Port Gigabit POE Layer 3 Switch SFP Uplinks
$394.0
extreme networks SUMMIT X440-24P 24-Port Gigabit POE Layer 3 Switch SFP Uplinks  pictureD-Link 8-Port EasySmart Gigabit Ethernet PoE Switch (DGS-1100-08P) New
$69.95
D-Link 8-Port EasySmart Gigabit Ethernet PoE Switch (DGS-1100-08P) New pictureINGM-CW2986-802.3AF 6PORT POE GIG MANAGED
$378.27
INGM-CW2986-802.3AF 6PORT POE GIG MANAGED pictureHP 403626-B21 Fiber Channel Pass 4G
$28.99
HP 403626-B21 Fiber Channel Pass 4G picture


Discussions

No Discussions have been posted on this vulnerability.