CVE-2002-0872 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2002-0872

l2tpd 0.67 does not initialize the random number generator, which allows remote attackers to hijack sessions.

Published: Sep 5, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-0872
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
l2tpd / l2tpd	0.64	0.64.x
l2tpd / l2tpd	0.65	0.65.x
l2tpd / l2tpd	0.62	0.62.x
l2tpd / l2tpd	0.66	0.66.x
l2tpd / l2tpd	0.63	0.63.x
l2tpd / l2tpd	0.67	0.67.x