ISS » Blackice Agent : Security Vulnerabilities, CVEs, (Denial of service)
The default configuration of BlackICE Agent 3.1.eal and 3.1.ebh has a high tcp.maxconnections setting, which could allow remote attackers to cause a denial of service (memory consumption) via a large number of connections to the BlackICE system that consumes more resources than intended by the user.
Max CVSS
5.0
EPSS Score
0.25%
Published
2002-10-04
Updated
2008-09-05
Buffer overflow in ISS BlackICE Defender 2.9 and earlier, BlackICE Agent 3.0 and 3.1, and RealSecure Server Sensor 6.0.1 and 6.5 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a flood of large ICMP ping packets.
Max CVSS
7.5
EPSS Score
9.17%
Published
2002-05-29
Updated
2016-10-18
2 vulnerabilities found