PT-2002-2109 · Cisco · Cisco Vpn Client
Published
2002-10-04
·
Updated
2017-10-10
·
CVE-2002-1106
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions:
Cisco Virtual Private Network (VPN) Client software versions 2.x.x through 3.x before 3.5.1C
Description:
The issue allows remote attackers to conduct man-in-the-middle attacks due to improper verification of certificate DN fields.
Recommendations:
For versions 2.x.x through 3.x before 3.5.1C, update to version 3.5.1C or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Cisco Vpn Client