CyberSec.Space Logo
Back to CVE Browser

CVE-2002-0957

MEDIUM
5.0
CVSS Severity Score
EPSS Score0.0060%
EPSS Percentile22.27th
PublishedOct 4, 2002
Last ModifiedApr 16, 2026

Vulnerability Description

The default configuration of BlackICE Agent 3.1.eal and 3.1.ebh has a high tcp.maxconnections setting, which could allow remote attackers to cause a denial of service (memory consumption) via a large number of connections to the BlackICE system that consumes more resources than intended by the user.

Affected Platforms (CPE)

πŸ“¦
Iss

Blackice Agent

= 3.1eal
πŸ“¦
Iss

Blackice Agent

= 3.1ebh

References & Advisories

πŸ”— http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0114.html
πŸ”— http://www.iss.net/security_center/static/9405.php
πŸ”— http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0114.html
πŸ”— http://www.iss.net/security_center/static/9405.php

Related Vulnerabilities

CVE-2002-02377.5

Buffer overflow in ISS BlackICE Defender 2.9 and earlier, BlackICE Agent 3.0 and 3.1, and RealSecure Server Sensor 6.0.1 and 6.5 a...

CVE-2002-09567.5

BlackICE Agent 3.1.eal does not always reactivate after a system standby, which could allow remote attackers and local users to by...

CVE-2005-27117.2

ISS BlackIce 3.6, as used in multiple products including BlackICE PC Protection, Server Protection, Agent for Server, and RealSecu...

CVE-2002-074710.0

Buffer overflow in lsmcode in AIX 4.3.3.