CVE-2002-1108

Currently unrated

Key Information:

Vendor: Cisco
Status: Vpn Client
Vendor: CVE Published:; 4 October 2002

Summary

Cisco Virtual Private Network (VPN) Client software 2.x.x, and 3.x before 3.6(Rel), when configured with all tunnel mode, can be forced into acknowledging a TCP packet from outside the tunnel.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/10047

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/5651

vdb-entryx_refsource_BID

http://www.cisco.com/warp/public/707/vpnclient-multiple2-...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Oct 4, 2002
Vulnerability Reserved
Sep 6, 2002