Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-2150

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-2150
Last Modified 05 Sep 2008 04:32:27
Published 31 Dec 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-2150

Summary

Firewalls from multiple vendors empty state tables more slowly than they are filled, which allows remote attackers to flood state tables with packet flooding attacks such as (1) TCP SYN flood, (2) UDP flood, or (3) Crikey CRC Flood, which causes the firewall to refuse any new connections.

Vulnerable Systems

Operating System

  • Juniper Netscreen Screenos 2.10 R3

  • Juniper Netscreen Screenos 2.10 R4

  • Juniper Netscreen Screenos 2.7.1

  • Juniper Netscreen Screenos 2.7.1r1

  • Juniper Netscreen Screenos 2.7.1r2

  • Juniper Netscreen Screenos 2.7.1r3

  • Juniper Netscreen Screenos 3.0.1r1

  • Juniper Netscreen Screenos 3.0.1r2

  • Juniper Netscreen Screenos 3.0.3 R1.1


References

CERT-VN - VU#539363

BID - 6023

XF - firewall-state-table-dos(10449)


Last Updated: 27 May 2016 10:37:38