| Vulnerability Name: | CVE-2002-2150 (CCN-10449) | ||||||||
| Assigned: | 2002-10-15 | ||||||||
| Published: | 2002-10-15 | ||||||||
| Updated: | 2008-09-05 | ||||||||
| Summary: | Firewalls from multiple vendors empty state tables more slowly than they are filled, which allows remote attackers to flood state tables with packet flooding attacks such as (1) TCP SYN flood, (2) UDP flood, or (3) Crikey CRC Flood, which causes the firewall to refuse any new connections. | ||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||
| References: | Source: MITRE Type: CNA CVE-2002-2150 Source: XF Type: UNKNOWN firewall-state-table-dos(10449) Source: CCN Type: US-CERT VU#539363 State-based firewalls fail to effectively manage session table resource exhaustion Source: CERT-VN Type: Third Party Advisory, US Government Resource VU#539363 Source: CCN Type: OSVDB ID: 4729 NetScreen H.323/NetMeeting Firewall Session Entry Saturation DoS Source: CCN Type: OSVDB ID: 60165 Alcatel OmniAccess 200 Series Firewall Multiple Method State Table Saturation Remote DoS Source: CCN Type: OSVDB ID: 60166 Check Point FireWall-1 Multiple Method State Table Saturation Remote DoS Source: CCN Type: OSVDB ID: 60167 Cisco PIX Firewall Multiple Method State Table Saturation Remote DoS Source: CCN Type: OSVDB ID: 60168 IBM Tivoli Firewall Multiple Method State Table Saturation Remote DoS Source: BID Type: UNKNOWN 6023 Source: CCN Type: BID-6023 Multiple Firewall Vendor Packet Flood State Table Filling Vulnerability Source: XF Type: UNKNOWN firewall-state-table-dos(10449) | ||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||
| BACK | |||||||||