{"id":"CVE-2002-1755","details":"tinc 1.0pre3 and 1.0pre4 VPN does not authenticate forwarded packets, which allows remote attackers to inject data into user sessions without detection, and possibly control the data contents via cut-and-paste attacks on CBC.","modified":"2026-04-10T03:34:58.984578Z","published":"2002-12-31T05:00:00Z","references":[{"type":"WEB","url":"http://www.securityfocus.com/archive/1/249142"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/7868"}],"schema_version":"1.7.5"}