 Two vulnerabilities have been reported in Cisco IOS, which can be exploited by malicious people to bypass certain security restrictions.
1) An error in the processing of IKE (Internet Key Exchange) XAUTH messages can be be exploited via specially crafted packets to complete authentication and gain access to network resources.
Successful exploitation requires knowledge of the shared group key to complete the IKE Phase 1 negotiation.
2) An error within the handling of ISAKMP profile attributes may cause the attributes to not be processed and result in a deadlock condition, which can be exploited to establish an unauthorised IPsec SA (Security Association).
This vulnerability only affects ISAKMP profiles matched by certificate maps.
The vulnerabilities affect network devices running the Cisco IOS 12.2T, 12.3, and 12.3T release trains and are configured for Cisco Easy VPN Server XAUTH version 6 authentication.
OPERATING SYSTEM:
Cisco IOS R12.x
Cisco IOS 12.x
SOLUTION:
See patch matrix in the vendor advisory for information about fixes.
http://www.cisco.com/warp/public/707/cisco-sa-20050406-xauth.shtml#software
PROVIDED AND/OR DISCOVERED BY:
Reported by vendor.
ORIGINAL ADVISORY:
http://www.cisco.com/warp/public/707/cisco-sa-20050406-xauth.shtml
VERIFY ADVISORY:
http://secunia.com/advisories/14853/
Secunia Security Advisories
| 
Contribute :
Advanced Search :
Web Resources :
Polls :
File Repository
