← CVECheck
HomeVulnerabilities

CVE-2002-0872 — HIGH severity vulnerability (l2tpd 0.67 does not initialize the random number generator,)

l2tpd 0.67 does not initialize the random number generator, which allows remote attackers to hijack sessions.

CVE IDCVE-2002-0872
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2002-09-05
Last modified2026-04-16
Descriptionl2tpd 0.67 does not initialize the random number generator, which allows remote attackers to hijack sessions.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →