Posted by Melchior Limacher on Apr 30

Hello

I was reading about “ike aggressive mode with pre shared key” (CVE-2002-1623).

As described by cisco (http://www.cisco.com/en/US/tech/tk583/tk372/technologies_security_notice09186a008016b57f.html),
this is still an issue
“When responding to IPSec session initialization, Cisco IOS(r) software
may use Aggressive Mode even if it has not been explicitly configured
to do so. Cisco IOS software initially tries to negotiate using…