CVE-2002-1747

EPSS 0.34%

Published: 12/31/2002Modified: 4/28/2026

Description

Vtun 2.5b1 does not authenticate forwarded packets, which allows remote attackers to inject data into user sessions without detection, and possibly control the data contents via cut-and-paste attacks on ECB.

Affected packages (1)

Debian/vtunfrom 0, < 2.5b2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2002-1747