Vulnerability Description
isakmpd/message.c in isakmpd in FreeBSD before isakmpd-20020403_1, and in OpenBSD 3.1, allows remote attackers to cause a denial of service (crash) by sending Internet Key Exchange (IKE) payloads out of sequence.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Freebsd | Ports Collection | <= 2002-08-28 |
| Openbsd | Openbsd | 3.1 |
References
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:05.asc
- http://www.kb.cert.org/vuls/id/287771US Government Resource
- http://www.openbsd.org/errata31.html#isakmpdPatch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/9850
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:05.asc
- http://www.kb.cert.org/vuls/id/287771US Government Resource
- http://www.openbsd.org/errata31.html#isakmpdPatch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/9850
FAQ
What is CVE-2002-2222?
CVE-2002-2222 is a vulnerability with a CVSS score of 5.1 (MEDIUM). isakmpd/message.c in isakmpd in FreeBSD before isakmpd-20020403_1, and in OpenBSD 3.1, allows remote attackers to cause a denial of service (crash) by sending Internet Key Exchange (IKE) payloads out ...
How severe is CVE-2002-2222?
CVE-2002-2222 has been rated MEDIUM with a CVSS base score of 5.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-2222?
Check the references section above for vendor advisories and patch information. Affected products include: Freebsd Ports Collection, Openbsd Openbsd.