CVE-2002-1108
Published Oct 4, 2002
Last updated 7 years ago
Overview
- Description
- Cisco Virtual Private Network (VPN) Client software 2.x.x, and 3.x before 3.6(Rel), when configured with all tunnel mode, can be forced into acknowledging a TCP packet from outside the tunnel.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:vpn_client:2.0:*:windows:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "398B68C7-C1DB-4A62-B0A2-89C917768E58"
},
{
"criteria": "cpe:2.3:a:cisco:vpn_client:3.0:*:windows:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "20C66C87-1367-4440-A2C2-E6B657DA2743"
},
{
"criteria": "cpe:2.3:a:cisco:vpn_client:3.0.5:*:windows:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D4BFB291-672C-437E-BBF4-B00D89C11EA9"
},
{
"criteria": "cpe:2.3:a:cisco:vpn_client:3.1:*:windows:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4A270D7C-ACBC-41A4-A606-8A4F35894E74"
},
{
"criteria": "cpe:2.3:a:cisco:vpn_client:3.5.1:*:linux:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2BD00D0A-EB6E-41AA-851D-9DD258E23BEA"
},
{
"criteria": "cpe:2.3:a:cisco:vpn_client:3.5.1:*:mac_os_x:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3FB66EB9-9FE9-4B13-9E5F-E9DEDCD0E3C3"
},
{
"criteria": "cpe:2.3:a:cisco:vpn_client:3.5.1:*:solaris:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "88EB557F-33CD-40FE-B470-04F93CB2F3E3"
},
{
"criteria": "cpe:2.3:a:cisco:vpn_client:3.5.1:*:windows:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "59938F7D-5F64-4FC0-A5B2-C798AF297130"
},
{
"criteria": "cpe:2.3:a:cisco:vpn_client:3.5.1c:*:windows:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "76060A99-ED0C-4125-B67E-FA8E4F57AAB5"
}
],
"operator": "OR"
}
]
}
]