Lucene search

[email protected]NVD:CVE-2002-1492

HistoryApr 02, 2003 - 5:00 a.m.

CVE-2002-1492

2003-04-0205:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

Percentile

0.4%

JSON

Buffer overflows in the Cisco VPN 5000 Client before 5.2.7 for Linux, and VPN 5000 Client before 5.2.8 for Solaris, allow local users to gain root privileges via (1) close_tunnel and (2) open_tunnel.

Affected configurations

Nvd

Node

ciscovpn_5000_clientMatch5.2.6linux

ciscovpn_5000_clientMatch5.2.7solaris

VendorProductVersionCPE
ciscovpn_5000_client5.2.6cpe:2.3:a:cisco:vpn_5000_client:5.2.6:*:linux:*:*:*:*:*
ciscovpn_5000_client5.2.7cpe:2.3:a:cisco:vpn_5000_client:5.2.7:*:solaris:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	vpn_5000_client	5.2.6	cpe:2.3:a:cisco:vpn_5000_client:5.2.6::linux:::::
cisco	vpn_5000_client	5.2.7	cpe:2.3:a:cisco:vpn_5000_client:5.2.7::solaris:::::

References

www.cisco.com/warp/public/707/vpn5k-client-multiple-vuln-pub.shtml

www.iss.net/security_center/static/10131.php

www.securityfocus.com/bid/5734

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

Percentile

0.4%

JSON

Related for NVD:CVE-2002-1492

cvelist1 exploitdb2 cve1