Vulnerability CVE-2002-2150


Published: 2002-12-31   Modified: 2012-02-12

Description:
Firewalls from multiple vendors empty state tables more slowly than they are filled, which allows remote attackers to flood state tables with packet flooding attacks such as (1) TCP SYN flood, (2) UDP flood, or (3) Crikey CRC Flood, which causes the firewall to refuse any new connections.

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial
Affected software
Juniper -> Netscreen screenos 

 References:
http://www.kb.cert.org/vuls/id/539363
http://www.securityfocus.com/bid/6023
http://www.iss.net/security_center/static/10449.php

Copyright 2021, cxsecurity.com

 

Back to Top