← Back

CVE-2002-0852

nvd nist
Published: Sep 5, 2002Modified: Apr 16, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:N/I:N/A:P
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

Buffer overflows in Cisco Virtual Private Network (VPN) Client 3.5.4 and earlier allows remote attackers to cause a denial of service via (1) an Internet Key Exchange (IKE) with a large Security Parameter Index (SPI) payload, or (2) an IKE packet with a large number of valid payloads.

Affected (8)

Products: Cisco: Vpn Client
Cisco
1 product
Vpn Client
Configuration A
8 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Vpn Client
Version 3.5.1
Vpn Client
Version 3.5.1
Vpn Client
Version 3.5.1
Vpn Client
Version 3.5.1
Vpn Client
Version 3.5.2
Vpn Client
Version 3.5.2
Vpn Client
Version 3.5.2
Vpn Client
Version 3.5.2

References (2)

Source: cve@mitre.org
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.