Sign-up

ID

VAR-200304-0128


CVE

CVE-2002-1492


TITLE

Cisco VPN Client Local Buffer Overflow Vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200304-004

DESCRIPTION

Buffer overflows in the Cisco VPN 5000 Client before 5.2.7 for Linux, and VPN 5000 Client before 5.2.8 for Solaris, allow local users to gain root privileges via (1) close_tunnel and (2) open_tunnel. The condition affects the binaries 'close_tunnel' and 'open_tunnel', both installed setuid root by default. Malicious local users may exploit these vulnerabilities to gain superuser privileges on the affected host. Cisco Virtual Private Network (VPN) client program is a program used to securely communicate with enterprise CISCO VPN devices through the Internet. It can be used under the Microsoft Windows operating system, and can also be used under the Linux operating system. CISCO assigned this vulnerability number as: CSCdy20065 <* link: http://www.cisco.com/warp/public/707/vpn5k-client-multiple-vuln-pub.shtml *>

Trust: 1.26

sources: NVD: CVE-2002-1492 // BID: 5734 // VULHUB: VHN-5877

AFFECTED PRODUCTS

vendor:ciscomodel:vpn 5000 clientscope:eqversion:5.2.7

Trust: 1.6

vendor:ciscomodel:vpn 5000 clientscope:eqversion:5.2.6

Trust: 1.6

vendor:ciscomodel:vpn client for solarisscope:eqversion:50005.2.7

Trust: 0.3

vendor:ciscomodel:vpn client for linuxscope:eqversion:50005.2.6

Trust: 0.3

vendor:ciscomodel:vpn client for solarisscope:neversion:50005.2.8

Trust: 0.3

vendor:ciscomodel:vpn client for linuxscope:neversion:50005.2.7

Trust: 0.3

sources: BID: 5734 // CNNVD: CNNVD-200304-004 // NVD: CVE-2002-1492

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2002-1492
value: HIGH

Trust: 1.0

CNNVD: CNNVD-200304-004
value: HIGH

Trust: 0.6

VULHUB: VHN-5877
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2002-1492
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-5877
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-5877 // CNNVD: CNNVD-200304-004 // NVD: CVE-2002-1492

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2002-1492

THREAT TYPE

local

Trust: 0.9

sources: BID: 5734 // CNNVD: CNNVD-200304-004

TYPE

Boundary Condition Error

Trust: 0.9

sources: BID: 5734 // CNNVD: CNNVD-200304-004

EXPLOIT AVAILABILITY

sources:
            
            
            VULHUB: VHN-5877

EXTERNAL IDS
db:NVDid:CVE-2002-1492
Trust: 2.0
db:BIDid:5734
Trust: 2.0
db:CNNVDid:CNNVD-200304-004
Trust: 0.7
db:CISCOid:20020918 CISCO VPN 5000 CLIENT MULTIPLE VULNERABILITIES
Trust: 0.6
db:XFid:5000
Trust: 0.6
db:EXPLOIT-DBid:21805
Trust: 0.1
db:EXPLOIT-DBid:21806
Trust: 0.1
db:SEEBUGid:SSVID-75627
Trust: 0.1
db:SEEBUGid:SSVID-75626
Trust: 0.1
db:VULHUBid:VHN-5877
Trust: 0.1
sources:
            
            
            VULHUB: VHN-5877 // 
            
            
            
            BID: 5734 // 
            
            
            
            CNNVD: CNNVD-200304-004 // 
            
            
            
            NVD: CVE-2002-1492

REFERENCES
url:http://www.cisco.com/warp/public/707/vpn5k-client-multiple-vuln-pub.shtml
Trust: 2.0
url:http://www.securityfocus.com/bid/5734
Trust: 1.7
url:http://www.iss.net/security_center/static/10131.php
Trust: 1.7
sources:
            
            
            VULHUB: VHN-5877 // 
            
            
            
            BID: 5734 // 
            
            
            
            CNNVD: CNNVD-200304-004 // 
            
            
            
            NVD: CVE-2002-1492

CREDITS
Discovered by Niels Heinen <niels.heinen@ubizen.com>.
Trust: 0.3
sources:
            
            
            BID: 5734

SOURCES
db:VULHUBid:VHN-5877
db:BIDid:5734
db:CNNVDid:CNNVD-200304-004
db:NVDid:CVE-2002-1492

LAST UPDATE DATE
2025-04-03T22:24:10.158000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-5877date:2008-09-05T00:00:00
db:BIDid:5734date:2009-07-11T17:06:00
db:CNNVDid:CNNVD-200304-004date:2005-10-20T00:00:00
db:NVDid:CVE-2002-1492date:2025-04-03T01:03:51.193

SOURCES RELEASE DATE
db:VULHUBid:VHN-5877date:2003-04-02T00:00:00
db:BIDid:5734date:2002-09-18T00:00:00
db:CNNVDid:CNNVD-200304-004date:2002-09-18T00:00:00
db:NVDid:CVE-2002-1492date:2003-04-02T05:00:00