CVE-2002-1623
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2002-1623
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The design of the Internet Key Exchange (IKE) protocol, when using Aggressive Mode for shared secret authentication, does not encrypt initiator or responder identities during negotiation, which may allow remote attackers to determine valid usernames by (1) monitoring responses before the password is supplied or (2) sniffing, as originally reported for FireWall-1 SecuRemote.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Internet Key Exchange (IKE)协议设计漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Internet Key Exchange (IKE)协议设计在使用用于分享秘密认证的Aggressive模式时不能加密协商时的发起人或应答者身份。远程攻击者可以通过(1)在提供密码前监测响应或(2)嗅探判断有效用户名,该漏洞与防火墙-1 SecuRemote最初报告相同。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2002-1623
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2002-1623
Please Login to view more intelligence information
- http://www.securiteam.com/securitynews/5TP040U8AW.htmlx_refsource_MISC
- http://www.nta-monitor.com/news/checkpoint.htmx_refsource_MISC
- http://www.checkpoint.com/techsupport/alerts/ike.htmlx_refsource_CONFIRM
- http://lists.grok.org.uk/pipermail/full-disclosure/2002-September/001223.htmlmailing-listx_refsource_FULLDISC
- https://nvd.nist.gov/vuln/detail/CVE-2002-1623
Same Patch Batch · n/a · 2005-03-26 · 46 CVEs total
| CVE-2005-0878 | MercuryBoard 跨站脚本攻击漏洞 | |
| CVE-2005-0881 | InterSpire ArticleLive 'rticles.newcomment'跨站脚本攻击漏洞 | |
| CVE-2005-0883 | DigitialHive 'Base.PHP'跨站脚本漏洞 | |
| CVE-2005-0886 | Invision Power Board HTML注入漏洞 | |
| CVE-2005-0887 | Double Choco Latte 多个任意代码漏洞 | |
| CVE-2005-0888 | Double Choco Latte多个漏洞 | |
| CVE-2005-0889 | Dream4 Koobi CMS 'Index.PHP'跨站脚本攻击漏洞 | |
| CVE-2005-0890 | Dream4 Koobi CMS Index.PHP SQL注入漏洞 | |
| CVE-2005-0885 | XMB Forum多个远程跨站脚本漏洞 | |
| CVE-2005-0879 | Vortex Portal远程PHP文件包含漏洞 | |
| CVE-2005-0880 | Vortex Portal content.php漏洞 | |
| CVE-2005-0877 | Dnsmasq多个远程漏洞 | |
| CVE-2005-0876 | Dnsmasq多个远程漏洞 | |
| CVE-2005-0875 | Cerulean Studios Trillian多个远程HTTP响应缓冲区溢出漏洞 | |
| CVE-2005-0874 | Cerulean Studios Trillian远程HTTP响应缓冲区溢出漏洞 | |
| CVE-2005-0873 | Oracle多个安全漏洞 | |
| CVE-2005-0872 | Topic Calendar Calendar_Scheduler.PHP跨站脚本攻击漏洞 | |
| CVE-2005-0871 | phpBB Topic Calendar漏洞 | |
| CVE-2005-0870 | PHPSysInfo多个跨站脚本漏洞 | |
| CVE-2005-0869 | phpSysInfo 信息泄露漏洞 |
Showing top 20 of 46 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out- - CVE-2026-8187
Open5GS UPF gtp-path.c _gtpv1_u_recv_cb resource consumption - CVE-2026-6667
PgBouncer missing authorization check in KILL_CLIENT admin c - CVE-2026-6666
PgBouncer crash in kill_pool_logins_server_error - CVE-2026-6665
PgBouncer buffer overflow in SCRAM
V. Comments for CVE-2002-1623
No comments yet