VPN vulnerability depends
News: VPN vulnerability depends on implementation:
The attacks resulted in several companies - Check Point, Cisco, Juniper, Stonesoft and Secgo among them - issuing security advisories and patches. The point of attack was against a protocol used in establishing security associations within IPSec known as Internet Security Association and Key Management Protocol (ISAKMP). It is the means by which two devices authenticate to each other and create security keys before setting up an IPSec tunnel.
DoS against IKE is not new!