Vulnerabilities > CVE-2002-1447 - Local Buffer Overflow vulnerability in Cisco VPN Client for Unix

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

cisco

exploit available

NVD

Published: 2002-05-28

Updated: 2008-09-05

Summary

Buffer overflow in the vpnclient program for UNIX VPN Client before 3.5.2 allows local users to gain administrative privileges via a long profile name in a connect argument.

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco VPN Client - Cisco VPN Client 2.0 Cisco VPN Client 3.0 Cisco VPN Client 3.0.5 Cisco VPN Client 3.1 Cisco VPN Client 3.5.1	6

Exploit-Db

description	Cisco VPN Client for Unix 3.5.1 Local Buffer Overflow Vulnerability. CVE-2002-1447. Local exploit for linux platform
id	EDB-ID:21568
last seen	2016-02-02
modified	2002-06-19
published	2002-06-19
reporter	methodic
source	https://www.exploit-db.com/download/21568/
title	Cisco VPN Client for Unix 3.5.1 - Local Buffer Overflow Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References