CVE-2002-2266

Name of the Vulnerable Software and Affected Versions: NetScreen ScreenOS versions 2.8 through 4.0

Description: The issue allows remote attackers to cause a denial of service by consuming the firewall session table. This is achieved by establishing multiple half-open H.323 sessions, which are not properly cleaned up during garbage removal and remain active for 36 hours without timing out.

Recommendations: For NetScreen ScreenOS versions 2.8 through 4.0, consider restricting or limiting the forwarding of H.323 or Netmeeting traffic to minimize the risk of exploitation. As a temporary workaround, implement measures to monitor and manually clean up half-open H.323 sessions to prevent session table consumption.