Memberkit Arbitrary File Upload Vulnerability views Popular Hours Audio File Library ms_adpcm_decode_block Buffer Overflow viewsCisco VPN Concentrator FTP Management Vulnerabilities Secunia Advisory SA21617 Advisory Toolbox Issue ticketSave in todo listMark as handledExploit informationDownload as PDFReview actionsAdd comment Release Date Last Update Popularity 9,697 views Critical Less critical Impact Security Bypass Where From local network Solution Status Vendor Patch OSCisco VPN Concentrator Subscribe Instant alerts on relevant vulnerabilities CVE referenceCVE20064313 DescriptionTwo vulnerabilities have been reported in Cisco VPN Concentrator, which can be exploited by malicious people to bypass certain security restrictions.
The vulnerabilities are caused due to unspecified errors when using FTP as management protocol and can be exploited by malicious people to bypass certain security restrictions. More… Send Feedback to Secunia If you have new information regarding this Secunia advisory or product in our database, please send it to us using either our web form or email us at vulnsecunia. com. Ideas, suggestions, and other feedback are welcome.
The vulnerabilities affect models 3005, 3015, 3020, 3030, 3060, and running the following versions Any version prior to, and including, 4. 72FSolutionUpdate to version 4. 17M or Network security best practises recommend restricting access to the FTP service or disabling it if not needed to manage the VPN concentrator.Provided andor discovered byThe vendor credits NCC Group. Changelog20060825 Added CVE reference. Original Track this Secunia Advisory Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Adobe Flash Player Multiple Security Issues and Vulnerabilities views This can Read more about our Vulnerability Intelligence solutions
Java JDK JRE Multiple Vulnerabilities views Audacity Buffer Overflow viewsCisco VPN Concentrator FTP Management Vulnerabilities Secunia Advisory SA21617 Advisory Toolbox Issue ticketSave in todo listMark as handledExploit informationDownload as PDFReview actionsAdd comment Release Date Last Update Popularity 9,697 views Critical Less critical Impact Security Bypass Where From local network Solution Status Vendor Patch OSCisco VPN Concentrator Subscribe Instant alerts on relevant vulnerabilities CVE referenceCVE20064313 DescriptionTwo vulnerabilities have been reported in Cisco VPN Concentrator, which can be exploited by malicious people to bypass certain security restrictions
About this Secunia Advisory is based on comes from third party unless stated otherwise.