6 matches found
CVE-2002-0237
The CVE-2002-0237 issue affects ISS BlackICE Defender (2.9 and earlier), BlackICE Agent (3.0 and 3.1), and RealSecure Server Sensor (6.0.1 and 6.5). A buffer overflow in the ICMP handling exposes a remote attacker to crash the service (DoS) and, in some cases, potentially execute arbitrary code b...
CVE-2001-0669
CVE-2001-0669 affects multiple IDS products (Cisco Secure IDS, Cisco Catalyst 6000 IDS Module, Dragon Sensor 4.x, Snort before 1.8.1, ISS RealSecure Network Sensor 5.x/6.x before XPU 3.2, and ISS RealSecure Server Sensor 5.5/6.0 for Windows) where an attacker can bypass HTTP attack detection by u...
CVE-2004-0362
CVE-2004-0362 affects ISS PAM ICQ parsing in RealSecure/BlackICE/Proventia products. The issue is multiple stack-based buffer overflows in the ICQ server response handling (SRV_MULTI carrying SRV_USER_ONLINE/SRV_META_USER with long nickname/firstname/lastname/email), enabling remote code executio...
CVE-2006-3840
The CVE-2006-3840 issue affects ISS RealSecure/BlackICE products and related PAM SMB Mailslot parsing. A crafted SMB_Mailslot_Heap_Overflow payload can trigger an infinite loop in the detection code, causing remote DoS with potential client/system unresponsiveness. Affected products include RealS...
CVE-2004-0193
CVE-2004-0193 describes a heap-based buffer overflow in the ISS Protocol Analysis Module (PAM) used by RealSecure/BlackICE products. An SMB authentication request with a long username allows a remote attacker to execute arbitrary code. Affected: RealSecure Network 7.0 and Server Sensor 7.0, Prove...
CVE-2003-0702
Vulnerability CVE-2003-0702 affects ISS Server Sensor 7.0 XPU (versions 20.16, 20.18; likely other versions before 20.19) in conjunction with Microsoft IIS over SSL. Affects a specific ISAPI plugin that, when accessed via a certain URL, can cause a denial of service (crash) and potentially allow ...