Unauthenticated Access to Sensitive Information in Cisco VPN 3000 Concentrator

Unauthenticated Access to Sensitive Information in Cisco VPN 3000 Concentrator

CVE-2002-1099 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, allows remote attackers to obtain potentially sensitive information without authentication by directly accessing certain HTML pages.

Learn more about our Web Application Penetration Testing UK.