> I do not understand how increasing the MTU would
> be a security vulnerability.
Well, it isn't a raw security vulnerability
-- however there may be side-effects), but an
"availability issue". "Availability issues",
whose worst form is DoS, deserve being published
in BugTraq, provided
Cisco VPN3000 gateway MTU overflow
==
Bug class: Conceptual/bad protocol implementation
Equipments affected: Cisco/VPN 3000 Concentrator with
software vpn3000-3.5.Rel-k9.bin
FACTS
The Cisco VPN3000 gateway lets remote client dictate
which maximu