Vulnerability Description
SafeNet VPN client allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly involving buffer overflows using (1) a large Security Parameter Index (SPI) field, (2) a large number of payloads, or (3) a long payload.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Safenet | Softremote Vpn Client | All versions |
References
- http://www.kb.cert.org/vuls/id/287771PatchUS Government Resource
- http://www.kb.cert.org/vuls/id/AAMN-59VTUQ
- http://www.safenet-inc.com/knowledgebase/read_item.asp?ID=375
- http://www.kb.cert.org/vuls/id/287771PatchUS Government Resource
- http://www.kb.cert.org/vuls/id/AAMN-59VTUQ
- http://www.safenet-inc.com/knowledgebase/read_item.asp?ID=375
FAQ
What is CVE-2002-2225?
CVE-2002-2225 is a vulnerability with a CVSS score of 5.1 (MEDIUM). SafeNet VPN client allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly involving buffer overflow...
How severe is CVE-2002-2225?
CVE-2002-2225 has been rated MEDIUM with a CVSS base score of 5.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-2225?
Check the references section above for vendor advisories and patch information. Affected products include: Safenet Softremote Vpn Client.