CVE Vulnerabilities

CVE-2002-0852

Published: Sep 05, 2002 | Modified: Sep 10, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

Buffer overflows in Cisco Virtual Private Network (VPN) Client 3.5.4 and earlier allows remote attackers to cause a denial of service via (1) an Internet Key Exchange (IKE) with a large Security Parameter Index (SPI) payload, or (2) an IKE packet with a large number of valid payloads.

Affected Software

Name Vendor Start Version End Version
Vpn_client Cisco 3.5.1 3.5.1
Vpn_client Cisco 3.5.1 3.5.1
Vpn_client Cisco 3.5.1 3.5.1
Vpn_client Cisco 3.5.1 3.5.1
Vpn_client Cisco 3.5.2 3.5.2
Vpn_client Cisco 3.5.2 3.5.2
Vpn_client Cisco 3.5.2 3.5.2
Vpn_client Cisco 3.5.2 3.5.2

References