SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Firewall)  >   Norton Internet Security Vendors:   Symantec
Symantec Norton Internet Security Can Be Crashed By Remote Users Sending ICMP Messages
SecurityTracker Alert ID:  1005937
SecurityTracker URL:  http://securitytracker.com/id/1005937
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Jan 17 2003
Impact:   Denial of service via network
Exploit Included:  Yes  
Version(s): 2003
Description:   A denial of service vulnerability was reported in Symantec's Norton Internet Security 2003 firewall product. A remote user may be able to cause the firewall to crash.

It is reported that a remote user can send a flood of thousands of ICMP echo request packets to the target host to cause the target host to crash. A demonstration exploit command is provided:

"ping MyIP -l 65500"

Impact:   A remote user may be able to cause the host running Symantec's Norton Internet Security to crash.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.symantec.com/sabu/nis/nis_pe/ (Links to External Site)
Cause:   State error
Underlying OS:  Windows (XP)

Message History:   This archive entry has one or more follow-up message(s) listed below.
(Vendor Issues Fix) Re: Symantec Norton Internet Security Can Be Crashed By Remote Users Sending ICMP Messages
The vendor has issued a fix.



 Source Message Contents

Subject:  NIS 2003




I have encountered serious problem with Norton Internet Security 2003. 
when I ping my machine with command:
"ping MyIP -l 65500" I get blue screen error. This happens every time, 
even after reinstalling NIS. The problem appears to be in Intrusion 
Detection.
Does anyone have similar problem?

Thx for comment on this matter,
Pavel

 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC