PT-2000-1625 · Iss · Iss Realsecure

Published

2000-10-20

Updated

2008-09-05

CVE-2000-0692

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions ISS RealSecure versions 3.2.1 through 3.2.2

Description The issue allows remote attackers to cause a denial of service by flooding the system with fragmented packets that have the SYN flag set.

Recommendations For ISS RealSecure versions 3.2.1 and 3.2.2, consider implementing measures to limit the impact of fragmented packet floods, such as configuring firewall rules to restrict excessive SYN flag packets. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2000-0692

Affected Products

Iss Realsecure

PT-2000-1625 · Iss · Iss Realsecure

CVE-2000-0692

Related Identifiers

Affected Products

References · 3