VDB
CVE-2002-2224
CVE-2002-2224
PUBLISHED
CVSS 5.099999904632568 MEDIUM
Buffer overflow in PGPFreeware 7.03 running on Windows NT 4.0 SP6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly including (1) a large Security Parameter Index (SPI) field, (2) large number of payloads, or (3) a long payload.
EPSS 2.61% · 85.9th percentile
Risk Scores
CVSS 2.0
5.099999904632568
EPSS Score
2.61%
85.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| network_associates | pgp_freeware | 7.03 |
| n/a | n/a | * |
Exploit Intelligence
- http://www.kb.cert.org/vuls/id/AAMN-5A5RXM (circl)
- 5449 (circl)
- ike-response-bo(9850) (circl)
- VU#287771 (circl)
Timeline
- Dec 31, 2002 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- http://www.kb.cert.org/vuls/id/AAMN-5A5RXM url
- 5449 vdb
- ike-response-bo(9850) vdb
- VU#287771 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2002-2224 advisory