Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2002-2185

The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network.

Published

2002-12-31T05:00:00.000

Last Modified

2025-04-03T01:03:51.193

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 4.9 (MEDIUM)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:N/I:N/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

6.9

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	sgi	irix	6.5	Yes
Operating System	sgi	irix	6.5.1	Yes
Operating System	sgi	irix	6.5.2	Yes
Operating System	sgi	irix	6.5.3	Yes
Operating System	sgi	irix	6.5.4	Yes
Operating System	sgi	irix	6.5.5	Yes
Operating System	sgi	irix	6.5.6	Yes
Operating System	sgi	irix	6.5.7	Yes
Operating System	sgi	irix	6.5.8	Yes
Operating System	sgi	irix	6.5.9	Yes
Operating System	sgi	irix	6.5.10	Yes
Operating System	sgi	irix	6.5.11	Yes
Operating System	sgi	irix	6.5.12	Yes
Operating System	sgi	irix	6.5.13	Yes
Operating System	sgi	irix	6.5.14f	Yes
Operating System	sgi	irix	6.5.14m	Yes
Operating System	sgi	irix	6.5.15f	Yes
Operating System	sgi	irix	6.5.15m	Yes
Operating System	sgi	irix	6.5.16f	Yes
Operating System	sgi	irix	6.5.16m	Yes
Operating System	sgi	irix	6.5.17f	Yes
Operating System	sgi	irix	6.5.17m	Yes
Operating System	sgi	irix	6.5.18f	Yes
Operating System	sgi	irix	6.5.18m	Yes
Operating System	debian	debian_linux	2.2	Yes
Operating System	debian	debian_linux	2.2	Yes
Operating System	debian	debian_linux	2.2	Yes
Operating System	debian	debian_linux	2.2	Yes
Operating System	debian	debian_linux	2.2	Yes
Operating System	debian	debian_linux	2.2	Yes
Operating System	mandrakesoft	mandrake_linux	8.0	Yes
Operating System	mandrakesoft	mandrake_linux	8.0	Yes
Operating System	mandrakesoft	mandrake_linux	8.1	Yes
Operating System	mandrakesoft	mandrake_linux	8.1	Yes
Operating System	mandrakesoft	mandrake_linux	8.2	Yes
Operating System	microsoft	windows_98	*	Yes
Operating System	microsoft	windows_98se	*	Yes
Operating System	microsoft	windows_xp	*	Yes
Operating System	microsoft	windows_xp	*	Yes
Operating System	redhat	enterprise_linux	3.0	Yes
Operating System	redhat	enterprise_linux	3.0	Yes
Operating System	redhat	enterprise_linux	3.0	Yes
Operating System	redhat	enterprise_linux	4.0	Yes
Operating System	redhat	enterprise_linux	4.0	Yes
Operating System	redhat	enterprise_linux	4.0	Yes
Operating System	redhat	enterprise_linux_desktop	3.0	Yes
Operating System	redhat	enterprise_linux_desktop	4.0	Yes
Operating System	redhat	linux	6.2	Yes
Operating System	redhat	linux	6.2	Yes
Operating System	redhat	linux	6.2	Yes
Operating System	redhat	linux	7.0	Yes
Operating System	redhat	linux	7.0	Yes
Operating System	redhat	linux	7.0	Yes
Operating System	redhat	linux	7.1	Yes
Operating System	redhat	linux	7.1	Yes
Operating System	redhat	linux	7.1	Yes
Operating System	redhat	linux	7.2	Yes
Operating System	redhat	linux	7.2	Yes
Operating System	redhat	linux	7.3	Yes
Operating System	redhat	linux_advanced_workstation	2.1	Yes
Operating System	redhat	linux_advanced_workstation	2.1	Yes
Operating System	suse	suse_linux	6.4	Yes
Operating System	suse	suse_linux	6.4	Yes
Operating System	suse	suse_linux	6.4	Yes
Operating System	suse	suse_linux	7.0	Yes
Operating System	suse	suse_linux	7.0	Yes
Operating System	suse	suse_linux	7.0	Yes
Operating System	suse	suse_linux	7.0	Yes
Operating System	suse	suse_linux	7.1	Yes
Operating System	suse	suse_linux	7.1	Yes
Operating System	suse	suse_linux	7.1	Yes
Operating System	suse	suse_linux	7.1	Yes
Operating System	suse	suse_linux	7.2	Yes
Operating System	suse	suse_linux	7.3	Yes
Operating System	suse	suse_linux	7.3	Yes
Operating System	suse	suse_linux	7.3	Yes
Operating System	suse	suse_linux	8.0	Yes

References

ftp://patches.sgi.com/support/free/security/advisories/20020901-01-A ([email protected])
http://online.securityfocus.com/archive/1/276968 ([email protected])
http://secunia.com/advisories/18510 Patch, Vendor Advisory ([email protected])
http://secunia.com/advisories/18562 Patch, Vendor Advisory ([email protected])
http://secunia.com/advisories/18684 Patch, Vendor Advisory ([email protected])
http://www.cs.ucsb.edu/~krishna/igmp_dos/ Exploit, Patch ([email protected])
http://www.redhat.com/support/errata/RHSA-2006-0101.html Patch ([email protected])
http://www.redhat.com/support/errata/RHSA-2006-0140.html Patch ([email protected])
http://www.redhat.com/support/errata/RHSA-2006-0190.html Patch ([email protected])
http://www.redhat.com/support/errata/RHSA-2006-0191.html Patch ([email protected])
http://www.securityfocus.com/archive/1/427980/100/0/threaded ([email protected])
http://www.securityfocus.com/archive/1/427981/100/0/threaded ([email protected])
http://www.securityfocus.com/archive/1/428028/100/0/threaded ([email protected])
http://www.securityfocus.com/archive/1/428058/100/0/threaded ([email protected])
http://www.securityfocus.com/bid/5020 Exploit, Patch ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/9436 ([email protected])
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10736 ([email protected])
ftp://patches.sgi.com/support/free/security/advisories/20020901-01-A (af854a3a-2127-422b-91ae-364da2661108)
http://online.securityfocus.com/archive/1/276968 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/18510 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/18562 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/18684 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.cs.ucsb.edu/~krishna/igmp_dos/ Exploit, Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2006-0101.html Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2006-0140.html Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2006-0190.html Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2006-0191.html Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/427980/100/0/threaded (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/427981/100/0/threaded (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/428028/100/0/threaded (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/428058/100/0/threaded (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/5020 Exploit, Patch (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/9436 (af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10736 (af854a3a-2127-422b-91ae-364da2661108)