Lucene search

[email protected]CVE-2002-2222

HistoryFeb 27, 2007 - 2:00 a.m.

CVE-2002-2222

2007-02-2702:00:00

[email protected]

web.nvd.nist.gov

cve-2002-2222

isakmpd

freebsd

openbsd

denial of service

crash

internet key exchange

ike

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

6.6 Medium

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.4%

JSON

isakmpd/message.c in isakmpd in FreeBSD before isakmpd-20020403_1, and in OpenBSD 3.1, allows remote attackers to cause a denial of service (crash) by sending Internet Key Exchange (IKE) payloads out of sequence.

Affected configurations

NVD

Node

freebsdports_collectionRange≤2002-08-28

openbsdopenbsdMatch3.1

CPENameOperatorVersion
freebsd:ports_collectionfreebsd ports collectionle2002-08-28
openbsd:openbsdopenbsdeq3.1

CPE	Name	Operator	Version
freebsd:ports_collection	freebsd ports collection	le	2002-08-28
openbsd:openbsd	openbsd	eq	3.1

References

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:05.asc

www.kb.cert.org/vuls/id/287771

www.openbsd.org/errata31.html#isakmpd

exchange.xforce.ibmcloud.com/vulnerabilities/9850

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

6.6 Medium

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.4%

JSON

Related for CVE-2002-2222

nvd1 cvelist1 cisco1