Lucene search

[email protected]CVE-2002-0234

HistoryMay 29, 2002 - 4:00 a.m.

CVE-2002-0234

2002-05-2904:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2002-0234

netscreen

screenos

denial of service

dos

resource exhaustion

port scan

7.3 High

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

23.8%

JSON

NetScreen ScreenOS before 2.6.1 does not support a maximum number of concurrent sessions for a system, which allows an attacker on the trusted network to cause a denial of service (resource exhaustion) via a port scan to an external network, which consumes all available connections.

CPENameOperatorVersion
juniper:netscreen_screenosjuniper netscreen screenosle2.6.1

CPE	Name	Operator	Version
juniper:netscreen_screenos	juniper netscreen screenos	le	2.6.1

References

marc.info/?l=bugtraq&m=101258281818524&w=2

marc.info/?l=bugtraq&m=101258887105690&w=2

online.securityfocus.com/archive/1/254268

www.iss.net/security_center/static/8057.php

www.securityfocus.com/bid/4015

7.3 High

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

23.8%

JSON