Lucene search

[email protected]NVD:CVE-2002-2185

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-2185

2002-12-3105:00:00

[email protected]

web.nvd.nist.gov

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

4.5 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.3%

JSON

The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target’s Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network.

Affected configurations

NVD

Node

sgiirixMatch6.5

sgiirixMatch6.5.1

sgiirixMatch6.5.2

sgiirixMatch6.5.3

sgiirixMatch6.5.4

sgiirixMatch6.5.5

sgiirixMatch6.5.6

sgiirixMatch6.5.7

sgiirixMatch6.5.8

sgiirixMatch6.5.9

sgiirixMatch6.5.10

sgiirixMatch6.5.11

sgiirixMatch6.5.12

sgiirixMatch6.5.13

sgiirixMatch6.5.14f

sgiirixMatch6.5.14m

sgiirixMatch6.5.15f

sgiirixMatch6.5.15m

sgiirixMatch6.5.16f

sgiirixMatch6.5.16m

sgiirixMatch6.5.17f

sgiirixMatch6.5.17m

sgiirixMatch6.5.18f

sgiirixMatch6.5.18m

Node

debiandebian_linuxMatch2.268k

debiandebian_linuxMatch2.2alpha

debiandebian_linuxMatch2.2arm

debiandebian_linuxMatch2.2ia-32

debiandebian_linuxMatch2.2powerpc

debiandebian_linuxMatch2.2sparc

mandrakesoftmandrake_linuxMatch8.0

mandrakesoftmandrake_linuxMatch8.0ppc

mandrakesoftmandrake_linuxMatch8.1

mandrakesoftmandrake_linuxMatch8.1ia64

mandrakesoftmandrake_linuxMatch8.2

microsoftwindows_98gold

microsoftwindows_98se

microsoftwindows_xphome

microsoftwindows_xpgoldprofessional

redhatenterprise_linuxMatch3.0advanced_servers

redhatenterprise_linuxMatch3.0enterprise_server

redhatenterprise_linuxMatch3.0workstation

redhatenterprise_linuxMatch4.0advanced_server

redhatenterprise_linuxMatch4.0enterprise_server

redhatenterprise_linuxMatch4.0workstation

redhatenterprise_linux_desktopMatch3.0

redhatenterprise_linux_desktopMatch4.0

redhatlinuxMatch6.2alpha

redhatlinuxMatch6.2i386

redhatlinuxMatch6.2sparc

redhatlinuxMatch7.0alpha

redhatlinuxMatch7.0i386

redhatlinuxMatch7.0sparc

redhatlinuxMatch7.1alpha

redhatlinuxMatch7.1i386

redhatlinuxMatch7.1ia64

redhatlinuxMatch7.2i386

redhatlinuxMatch7.2ia64

redhatlinuxMatch7.3i386

redhatlinux_advanced_workstationMatch2.1ia64

redhatlinux_advanced_workstationMatch2.1itanium_processor

susesuse_linuxMatch6.4i386

susesuse_linuxMatch6.4ppc

susesuse_linuxMatch6.4alpha

susesuse_linuxMatch7.0i386

susesuse_linuxMatch7.0ppc

susesuse_linuxMatch7.0sparc

susesuse_linuxMatch7.0alpha

susesuse_linuxMatch7.1spa

susesuse_linuxMatch7.1sparc

susesuse_linuxMatch7.1x86

susesuse_linuxMatch7.1alpha

susesuse_linuxMatch7.2i386

susesuse_linuxMatch7.3i386

susesuse_linuxMatch7.3ppc

susesuse_linuxMatch7.3sparc

susesuse_linuxMatch8.0i386

References

ftp://patches.sgi.com/support/free/security/advisories/20020901-01-A

online.securityfocus.com/archive/1/276968

secunia.com/advisories/18510

secunia.com/advisories/18562

secunia.com/advisories/18684

www.cs.ucsb.edu/~krishna/igmp_dos/

www.redhat.com/support/errata/RHSA-2006-0101.html

www.redhat.com/support/errata/RHSA-2006-0140.html

www.redhat.com/support/errata/RHSA-2006-0190.html

www.redhat.com/support/errata/RHSA-2006-0191.html

www.securityfocus.com/archive/1/427980/100/0/threaded

www.securityfocus.com/archive/1/427981/100/0/threaded

www.securityfocus.com/archive/1/428028/100/0/threaded

www.securityfocus.com/archive/1/428058/100/0/threaded

www.securityfocus.com/bid/5020

exchange.xforce.ibmcloud.com/vulnerabilities/9436

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10736

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

4.5 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.3%

JSON

Related for NVD:CVE-2002-2185

cve2 cvelist2 nvd1 nessus5 centos3 redhat4