Lucene search

MitreCVE-2002-1203

HistoryOct 28, 2002 - 5:00 a.m.

CVE-2002-1203

2002-10-2805:00:00

CWE-399

mitre

web.nvd.nist.gov

ibm

secureway

firewall

4.2.2

denial of service

vulnerability

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.8

Confidence

High

EPSS

0.011

Percentile

84.7%

JSON

IBM SecureWay Firewall before 4.2.2 performs extra processing before determining that a packet is invalid and dropping it, which allows remote attackers to cause a denial of service (resource exhaustion) via a flood of malformed TCP packets without any flags set.

Affected configurations

Nvd

Node

ibmsecureway_firewallMatch4.2

ibmsecureway_firewallMatch4.2.1

VendorProductVersionCPE
ibmsecureway_firewall4.2cpe:2.3:a:ibm:secureway_firewall:4.2:*:*:*:*:*:*:*
ibmsecureway_firewall4.2.1cpe:2.3:a:ibm:secureway_firewall:4.2.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	secureway_firewall	4.2	cpe:2.3:a:ibm:secureway_firewall:4.2:::::::*
ibm	secureway_firewall	4.2.1	cpe:2.3:a:ibm:secureway_firewall:4.2.1:::::::*

References

marc.info/?l=bugtraq&m=103417988503398&w=2

www.iss.net/security_center/static/10249.php

www.securityfocus.com/bid/5924

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.8

Confidence

High

EPSS

0.011

Percentile

84.7%

JSON

Related for CVE-2002-1203