Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1747

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-1747
Last Modified 10 Sep 2008 03:15:26
Published 31 Dec 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-1747

Summary

Vtun 2.5b1 does not authenticate forwarded packets, which allows remote attackers to inject data into user sessions without detection, and possibly control the data contents via cut-and-paste attacks on ECB.

Vulnerable Systems

Application

  • Maxim Krasnyansky Vtun 2.5b1


References

XF - vpn-modify-packets(7868)

BUGTRAQ - 20020109 Security weaknesses of VTun


Last Updated: 27 May 2016 10:37:28