Vulnerabilities > CVE-2002-1107 - Unspecified vulnerability in Cisco VPN Client

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

cisco

NVD

Published: 2002-10-04

Updated: 2024-11-20

Summary

Cisco Virtual Private Network (VPN) Client software 2.x.x, and 3.x before 3.5.2B, does not generate sufficiently random numbers, which may make it vulnerable to certain attacks such as spoofing.

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco VPN Client 3.5.1C Cisco VPN Client 3.1 Cisco VPN Client 3.5.1 Cisco VPN Client 3.5.2 Cisco VPN Client 3.0 Cisco VPN Client 2.0 Cisco VPN Client 3.0.5	13

References

http://www.cisco.com/warp/public/707/vpnclient-multiple2-vuln-pub.shtml
http://www.cisco.com/warp/public/707/vpnclient-multiple2-vuln-pub.shtml
http://www.securityfocus.com/bid/5653
http://www.securityfocus.com/bid/5653
https://exchange.xforce.ibmcloud.com/vulnerabilities/10046
https://exchange.xforce.ibmcloud.com/vulnerabilities/10046