CVSS: 9.1EPSS: 0%CPEs: 13EXPL: 0CVE-2002-1107
https://notcve.org/view.php?id=CVE-2002-1107
04 Oct 2002 — Cisco Virtual Private Network (VPN) Client software 2.x.x, and 3.x before 3.5.2B, does not generate sufficiently random numbers, which may make it vulnerable to certain attacks such as spoofing. • http://www.cisco.com/warp/public/707/vpnclient-multiple2-vuln-pub.shtml •
CVSS: 9.1EPSS: 0%CPEs: 9EXPL: 0CVE-2002-1108
https://notcve.org/view.php?id=CVE-2002-1108
04 Oct 2002 — Cisco Virtual Private Network (VPN) Client software 2.x.x, and 3.x before 3.6(Rel), when configured with all tunnel mode, can be forced into acknowledging a TCP packet from outside the tunnel. • http://www.cisco.com/warp/public/707/vpnclient-multiple2-vuln-pub.shtml •
CVSS: 7.5EPSS: 1%CPEs: 8EXPL: 0CVE-2002-0853
https://notcve.org/view.php?id=CVE-2002-0853
05 Sep 2002 — Cisco Virtual Private Network (VPN) Client 3.5.4 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a packet with a zero-length payload. El Cliente de Red Privada Virtual (VPN) de Cisco 3.5.4 y anteriores permite a atacantes remotos causar una denegación de servicio (consumición de CPU) mediante un paquete con una carga útil de longitud cero. • http://www.cisco.com/warp/public/707/vpnclient-multiple-vuln-pub.shtml •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2002-0852
https://notcve.org/view.php?id=CVE-2002-0852
14 Aug 2002 — Buffer overflows in Cisco Virtual Private Network (VPN) Client 3.5.4 and earlier allows remote attackers to cause a denial of service via (1) an Internet Key Exchange (IKE) with a large Security Parameter Index (SPI) payload, or (2) an IKE packet with a large number of valid payloads. Desbordamiento de búfer en Cliente de Red Privada Virtual (VPN) de Cisco 3.5.4 y anteriores permite a atacantes remotos causar una denegación de servicio mediante un Intecambio de Clave de Intenet (Internet Key Exchange - IKE)... • http://www.cisco.com/warp/public/707/vpnclient-multiple-vuln-pub.shtml •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 2CVE-2002-1447 – Cisco VPN Client for Unix 3.5.1 - Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-1447
28 May 2002 — Buffer overflow in the vpnclient program for UNIX VPN Client before 3.5.2 allows local users to gain administrative privileges via a long profile name in a connect argument. • https://www.exploit-db.com/exploits/21568 •