Lucene search

[email protected]CVE-2002-2225

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-2225

2002-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

safenet

vpn

vulnerability

denial of service

arbitrary code execution

ike

nvd

8.2 High

AI Score

Confidence

High

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.4%

JSON

SafeNet VPN client allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly involving buffer overflows using (1) a large Security Parameter Index (SPI) field, (2) a large number of payloads, or (3) a long payload.

CPENameOperatorVersion
safenet:softremote_vpn_clientsafenet softremote vpn clienteq*

CPE	Name	Operator	Version
safenet:softremote_vpn_client	safenet softremote vpn client	eq	*

References

www.kb.cert.org/vuls/id/287771

www.kb.cert.org/vuls/id/AAMN-59VTUQ

www.safenet-inc.com/knowledgebase/read_item.asp?ID=375

8.2 High

AI Score

Confidence

High

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.4%

JSON

Related for CVE-2002-2225

cisco1