CVE-2002-0237

Buffer overflow in ISS BlackICE Defender 2.9 and earlier, BlackICE Agent 3.0 and 3.1, and RealSecure Server Sensor 6.0.1 and 6.5 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a flood of large ICMP ping packets.

Published: May 29, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-0237
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
iss / blackice_agent	3.1	3.1.x
iss / blackice_agent	3.0	3.0.x
iss / blackice_defender	2.9caq	2.9caq.x
iss / realsecure_server_sensor	6.0.1	6.0.1.x
iss / realsecure_server_sensor	6.5	6.5.x
iss / blackice_defender	2.9	2.9.x
iss / blackice_defender	2.9cap	2.9cap.x

http://marc.info/?l=bugtraq&m=101286393404301&w=2
http://marc.info/?l=bugtraq&m=101302424803268&w=2
http://marc.info/?l=bugtraq&m=101321744807452&w=2
http://marc.info/?l=ntbugtraq&m=101353165915171&w=2
http://www.iss.net/security_center/alerts/advise109.php
http://www.iss.net/security_center/static/8058.php
http://www.securityfocus.com/bid/4025

Vulnerability Database

289,697

CVE-2002-0237