VDB
CVE-2002-2185
CVE-2002-2185
PUBLISHED
CVSS 4.900000095367432 MEDIUM
The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network.
EPSS 0.66% · 71.6th percentile
Risk Scores
CVSS 2.0
4.900000095367432
EPSS Score
0.66%
71.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| redhat | linux_advanced_workstation | 2.1, 2.1 |
| microsoft | windows_xp | |
| microsoft | windows_98 | |
| suse | suse_linux | 6.4, 6.4, 6.4 |
| n/a | n/a | * |
| redhat | enterprise_linux | 3.0, 4.0, 4.0 |
| microsoft | windows_98se | |
| redhat | linux | 6.2, 6.2, 7.0 |
| redhat | enterprise_linux_desktop | 4.0, 3.0 |
| debian | debian_linux | 2.2, 2.2, 2.2 |
| mandrakesoft | mandrake_linux | 8.0, 8.2, 8.0 |
| sgi | irix | 6.5.13, 6.5.12, 6.5.11 |
Exploit Intelligence
- FLSA:157459-2 (circl)
- FLSA:157459-4 (circl)
- RHSA-2006:0140 (circl)
- 18684 (circl)
- igmp-spoofed-report-dos(9436) (circl)
- oval:org.mitre.oval:def:10736 (circl)
- 20020901-01-A (circl)
- RHSA-2006:0101 (circl)
- 18562 (circl)
- 20020614 IGMP denial of service vulnerability (circl)
…and 7 more exploits
Timeline
- Dec 31, 2002 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- RHSA-2006:0140 vendor-advisory
- 18684 third-party-advisory
- igmp-spoofed-report-dos(9436) vdb
- oval:org.mitre.oval:def:10736 vdb
- 20020901-01-A vendor-advisory
- RHSA-2006:0101 vendor-advisory
- FLSA:157459-2 vendor-advisory
- FLSA:157459-4 vendor-advisory
- 5020 vdb
- 20020614 IGMP denial of service vulnerability mailing-list
- RHSA-2006:0190 vendor-advisory
- 18510 third-party-advisory
- FLSA:157459-1 vendor-advisory
- http://www.cs.ucsb.edu/~krishna/igmp_dos/ url
- FLSA:157459-3 vendor-advisory
- RHSA-2006:0191 vendor-advisory
- 18562 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2002-2185 advisory
- http://www.cs.ucsb.edu/~krishna/igmp_dos url