Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1911

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-1911
Last Modified 05 Sep 2008 04:31:49
Published 31 Dec 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-1911

Summary

ZoneAlarm Pro 3.0 and 3.1, when configured to block all traffic, allows remote attackers to cause a denial of service (CPU and memory consumption) via a large number of SYN packets (SYN flood). NOTE: the vendor was not able to reproduce the issue.

Vulnerable Systems

Application

  • Zonelabs Zonealarm 3.0

  • Zonelabs Zonealarm 3.1


References

BID - 5975

XF - zonealarm-synflood-dos(10379)

BUGTRAQ - 20021017 Re: NSSI-2002-zonealarm3: ZoneAlarm Pro Denial of Service Vulnerability


Last Updated: 27 May 2016 10:37:32