I just received word from an authoritative source on this vulnerability (actually the person that found it) and was informed that version 4.7.2B does not fix the DoS vulnerability. The only way to mitigate the risk is to block TCP port 80 on your concentrator (or upstream router/firewall), otherwise an attacker could send a stream of packets that takes out the concentrator and forces you to power cycle the box to get it back. Ouch.
Full Article
Thank you to Eldon Sprickerhoff for pointing this out.
.com
Network Security, Distributed Workforce, Vulnerability Management
Cisco VPN 3000 DoS Vulnerability – NOT FIXED
Paul AsadoorianPaul Asadoorian
Paul Asadoorian is currently the Principal Security Evangelist for Eclypsium, focused on firmware and supply chain security awareness. Paul’s passion for firmware security extends back many years to the WRT54G hacking days and reverse engineering firmware on IoT devices for fun. Paul and his long-time podcast co-host Larry Pesce co-authored the book “WRTG54G Ultimate Hacking” in 2007, which fueled the firmware hacking fire even more. Paul has worked in technology and information security for over 20 years, holding various security and engineering roles in a lottery company, university, ISP, independent penetration tester, and security product companies such as Tenable. In 2005 Paul founded Security Weekly, a weekly podcast dedicated to hacking and information security. In 2020 Security Weekly was acquired by the Cyberrisk Alliance. Paul is still the host of one of the longest-running security podcasts, Paul’s Security Weekly, he enjoys coding in Python & telling everyone he uses Linux.
Related Events
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news