CVSS: 9.1EPSS: 0%CPEs: 9EXPL: 0CVE-2002-1108
https://notcve.org/view.php?id=CVE-2002-1108
04 Oct 2002 — Cisco Virtual Private Network (VPN) Client software 2.x.x, and 3.x before 3.6(Rel), when configured with all tunnel mode, can be forced into acknowledging a TCP packet from outside the tunnel. • http://www.cisco.com/warp/public/707/vpnclient-multiple2-vuln-pub.shtml •
CVSS: 7.5EPSS: 0%CPEs: 20EXPL: 0CVE-2002-1094
https://notcve.org/view.php?id=CVE-2002-1094
10 Sep 2002 — Information leaks in Cisco VPN 3000 Concentrator 2.x.x and 3.x.x before 3.5.4 allow remote attackers to obtain potentially sensitive information via the (1) SSH banner, (2) FTP banner, or (3) an incorrect HTTP request. • http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-pub.shtml •
CVSS: 7.5EPSS: 0%CPEs: 20EXPL: 0CVE-2002-1100
https://notcve.org/view.php?id=CVE-2002-1100
10 Sep 2002 — Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, allows remote attackers to cause a denial of service (crash) via a long (1) username or (2) password to the HTML login interface. • http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-pub.shtml •
CVSS: 7.5EPSS: 10%CPEs: 23EXPL: 1CVE-2002-1101 – Cisco VPN 3000 Series Concentrator Client - Authentication Denial of Service
https://notcve.org/view.php?id=CVE-2002-1101
10 Sep 2002 — Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), and 3.x before 3.5.5, allows remote attackers to cause a denial of service via a long user name. • https://www.exploit-db.com/exploits/21770 •
CVSS: 7.5EPSS: 0%CPEs: 23EXPL: 0CVE-2002-1103
https://notcve.org/view.php?id=CVE-2002-1103
10 Sep 2002 — Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), and 3.x before 3.5.5, allows remote attackers to cause a denial of service via (1) malformed or (2) large ISAKMP packets. • http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-pub.shtml •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2002-0853
https://notcve.org/view.php?id=CVE-2002-0853
05 Sep 2002 — Cisco Virtual Private Network (VPN) Client 3.5.4 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a packet with a zero-length payload. El Cliente de Red Privada Virtual (VPN) de Cisco 3.5.4 y anteriores permite a atacantes remotos causar una denegación de servicio (consumición de CPU) mediante un paquete con una carga útil de longitud cero. • http://www.cisco.com/warp/public/707/vpnclient-multiple-vuln-pub.shtml •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2002-0852
https://notcve.org/view.php?id=CVE-2002-0852
14 Aug 2002 — Buffer overflows in Cisco Virtual Private Network (VPN) Client 3.5.4 and earlier allows remote attackers to cause a denial of service via (1) an Internet Key Exchange (IKE) with a large Security Parameter Index (SPI) payload, or (2) an IKE packet with a large number of valid payloads. Desbordamiento de búfer en Cliente de Red Privada Virtual (VPN) de Cisco 3.5.4 y anteriores permite a atacantes remotos causar una denegación de servicio mediante un Intecambio de Clave de Intenet (Internet Key Exchange - IKE)... • http://www.cisco.com/warp/public/707/vpnclient-multiple-vuln-pub.shtml •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 2CVE-2002-1447 – Cisco VPN Client for Unix 3.5.1 - Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-1447
28 May 2002 — Buffer overflow in the vpnclient program for UNIX VPN Client before 3.5.2 allows local users to gain administrative privileges via a long profile name in a connect argument. • https://www.exploit-db.com/exploits/21568 •