Lucene search

[email protected]CVE-2002-2224

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-2224

2002-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2002-2224

pgpfreeware

buffer overflow

windows nt

denial of service

arbitrary code

internet key exchange

nvd

8.3 High

AI Score

Confidence

High

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.032 Low

EPSS

Percentile

91.1%

JSON

Buffer overflow in PGPFreeware 7.03 running on Windows NT 4.0 SP6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly including (1) a large Security Parameter Index (SPI) field, (2) large number of payloads, or (3) a long payload.

CPENameOperatorVersion
network_associates:pgp_freewarenetwork associates pgp freewareeq7.03

CPE	Name	Operator	Version
network_associates:pgp_freeware	network associates pgp freeware	eq	7.03

References

www.kb.cert.org/vuls/id/287771

www.kb.cert.org/vuls/id/AAMN-5A5RXM

www.securityfocus.com/bid/5449

exchange.xforce.ibmcloud.com/vulnerabilities/9850

8.3 High

AI Score

Confidence

High

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.032 Low

EPSS

Percentile

91.1%

JSON

Related for CVE-2002-2224

cisco1