CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
94.7%
Buffer overflow in ISS BlackICE Defender 2.9 and earlier, BlackICE Agent 3.0 and 3.1, and RealSecure Server Sensor 6.0.1 and 6.5 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a flood of large ICMP ping packets.
Vendor | Product | Version | CPE |
---|---|---|---|
iss | realsecure_server_sensor | 6.0.1 | cpe:/a:iss:realsecure_server_sensor:6.0.1::: |
iss | blackice_defender | 2.9cap | cpe:/a:iss:blackice_defender:2.9cap::: |
iss | blackice_defender | 2.9caq | cpe:/a:iss:blackice_defender:2.9caq::: |
iss | blackice_agent | 3.0 | cpe:/a:iss:blackice_agent:3.0::: |
iss | blackice_agent | 3.1 | cpe:/a:iss:blackice_agent:3.1::: |
iss | realsecure_server_sensor | 6.5 | cpe:/a:iss:realsecure_server_sensor:6.5::: |
iss | blackice_defender | 2.9 | cpe:/a:iss:blackice_defender:2.9::: |