CVE-2002-2185
Last modified
CVE-2002-2185 is a vulnerability of currently unknown severity. The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network.. EPSS estimates a 2.49% chance of exploitation in the next 30 days.
Description
The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network.
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Sgi | Irix | 6.5 | — |
| Sgi | Irix | 6.5.1 | — |
| Sgi | Irix | 6.5.2 | — |
| Sgi | Irix | 6.5.3 | — |
| Sgi | Irix | 6.5.4 | — |
| Sgi | Irix | 6.5.5 | — |
| Sgi | Irix | 6.5.6 | — |
| Sgi | Irix | 6.5.7 | — |
| Sgi | Irix | 6.5.8 | — |
| Sgi | Irix | 6.5.9 | — |
| Sgi | Irix | 6.5.10 | — |
| Sgi | Irix | 6.5.11 | — |
| Sgi | Irix | 6.5.12 | — |
| Sgi | Irix | 6.5.13 | — |
| Sgi | Irix | 6.5.14f | — |
| Sgi | Irix | 6.5.14m | — |
| Sgi | Irix | 6.5.15f | — |
| Sgi | Irix | 6.5.15m | — |
| Sgi | Irix | 6.5.16f | — |
| Sgi | Irix | 6.5.16m | — |
| Sgi | Irix | 6.5.17f | — |
| Sgi | Irix | 6.5.17m | — |
| Sgi | Irix | 6.5.18f | — |
| Sgi | Irix | 6.5.18m | — |
| Debian | Debian Linux | 2.2 | — |
| Mandrakesoft | Mandrake Linux | 8.0 | — |
| Mandrakesoft | Mandrake Linux | 8.1 | — |
| Mandrakesoft | Mandrake Linux | 8.2 | — |
| Microsoft | Windows 98 | All versions | Gold |
| Microsoft | Windows 98se | All versions | — |
| Microsoft | Windows Xp | All versions | — |
| Redhat | Enterprise Linux | 3.0 | — |
| Redhat | Enterprise Linux | 4.0 | — |
| Redhat | Enterprise Linux Desktop | 3.0 | — |
| Redhat | Enterprise Linux Desktop | 4.0 | — |
| Redhat | Linux | 6.2 | — |
| Redhat | Linux | 7.0 | — |
| Redhat | Linux | 7.1 | — |
| Redhat | Linux | 7.2 | — |
| Redhat | Linux | 7.3 | — |
| Redhat | Linux Advanced Workstation | 2.1 | — |
| Suse | Suse Linux | 6.4 | — |
| Suse | Suse Linux | 7.0 | — |
| Suse | Suse Linux | 7.1 | — |
| Suse | Suse Linux | 7.2 | — |
| Suse | Suse Linux | 7.3 | — |
| Suse | Suse Linux | 8.0 | — |
References
- http://secunia.com/advisories/18510Patch, Vendor Advisory
- http://secunia.com/advisories/18562Patch, Vendor Advisory
- http://secunia.com/advisories/18684Patch, Vendor Advisory
- http://www.cs.ucsb.edu/~krishna/igmp_dos/Exploit, Patch
- http://www.securityfocus.com/bid/5020Exploit, Patch
- http://secunia.com/advisories/18510Patch, Vendor Advisory
- http://secunia.com/advisories/18562Patch, Vendor Advisory
- http://secunia.com/advisories/18684Patch, Vendor Advisory
- http://www.cs.ucsb.edu/~krishna/igmp_dos/Exploit, Patch
- http://www.securityfocus.com/bid/5020Exploit, Patch
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2002-2185?
How severe is CVE-2002-2185?
How do I fix CVE-2002-2185?
Are you affected by CVE-2002-2185?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST