Vulnerability Details CVE-2002-0237
Buffer overflow in ISS BlackICE Defender 2.9 and earlier, BlackICE Agent 3.0 and 3.1, and RealSecure Server Sensor 6.0.1 and 6.5 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a flood of large ICMP ping packets.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.032
EPSS Ranking 86.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=101286393404301&w=2
- http://marc.info/?l=bugtraq&m=101302424803268&w=2
- http://marc.info/?l=bugtraq&m=101321744807452&w=2
- http://marc.info/?l=ntbugtraq&m=101353165915171&w=2
- http://www.iss.net/security_center/alerts/advise109.php
- http://www.iss.net/security_center/static/8058.php
- http://www.securityfocus.com/bid/4025
- http://marc.info/?l=bugtraq&m=101286393404301&w=2
- http://marc.info/?l=bugtraq&m=101302424803268&w=2
- http://marc.info/?l=bugtraq&m=101321744807452&w=2
- http://marc.info/?l=ntbugtraq&m=101353165915171&w=2
- http://www.iss.net/security_center/alerts/advise109.php
- http://www.iss.net/security_center/static/8058.php
- http://www.securityfocus.com/bid/4025
Products affected by CVE-2002-0237
-
cpe:2.3:a:iss:blackice_agent:3.0
-
cpe:2.3:a:iss:blackice_agent:3.1
-
cpe:2.3:a:iss:blackice_defender:2.9
-
cpe:2.3:a:iss:blackice_defender:2.9cap
-
cpe:2.3:a:iss:blackice_defender:2.9caq
-
cpe:2.3:a:iss:realsecure_server_sensor:6.0.1
-
cpe:2.3:a:iss:realsecure_server_sensor:6.5