CVE-2002-1107

Published Oct 4, 2002

Last updated 7 years ago

CVSS info 7.5

Overview

Description: Cisco Virtual Private Network (VPN) Client software 2.x.x, and 3.x before 3.5.2B, does not generate sufficiently random numbers, which may make it vulnerable to certain attacks such as spoofing.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:2.0:*:windows:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "398B68C7-C1DB-4A62-B0A2-89C917768E58"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.0:*:windows:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20C66C87-1367-4440-A2C2-E6B657DA2743"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.0.5:*:windows:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4BFB291-672C-437E-BBF4-B00D89C11EA9"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.1:*:windows:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4A270D7C-ACBC-41A4-A606-8A4F35894E74"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.1:*:linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2BD00D0A-EB6E-41AA-851D-9DD258E23BEA"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.1:*:mac_os_x:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3FB66EB9-9FE9-4B13-9E5F-E9DEDCD0E3C3"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.1:*:solaris:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88EB557F-33CD-40FE-B470-04F93CB2F3E3"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.1:*:windows:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "59938F7D-5F64-4FC0-A5B2-C798AF297130"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.1c:*:windows:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76060A99-ED0C-4125-B67E-FA8E4F57AAB5"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.2:*:linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F2EEB23E-4592-49A1-BDC6-110580340AAD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.2:*:mac_os_x:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D548CEFE-1970-42D3-9039-196A3B5F5D0B"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.2:*:solaris:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2D4BDB9B-99D8-42B7-8D57-2B57029220F1"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.2:*:windows:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2288FB91-4607-417D-8658-E1B8090BE40A"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References