1. Home
  2. CVE Database
  3. CVE-2002-2185
MEDIUM · 4.9

CVE-2002-2185

The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which...

Vulnerability Description

The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network.

CVSS Score

4.9

MEDIUM

AV:L/AC:L/Au:N/C:N/I:N/A:C
Confidentiality
NONE
Integrity
NONE
Availability
COMPLETE

Affected Products

VendorProductVersions
SgiIrix6.5
DebianDebian Linux2.2
MandrakesoftMandrake Linux8.0
MicrosoftWindows 98All versions
MicrosoftWindows 98SeAll versions
MicrosoftWindows XpAll versions
RedhatEnterprise Linux3.0
RedhatEnterprise Linux Desktop3.0
RedhatLinux6.2
RedhatLinux Advanced Workstation2.1
SuseSuse Linux6.4

References

FAQ

What is CVE-2002-2185?

CVE-2002-2185 is a vulnerability with a CVSS score of 4.9 (MEDIUM). The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which...

How severe is CVE-2002-2185?

CVE-2002-2185 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2002-2185?

Check the references section above for vendor advisories and patch information. Affected products include: Sgi Irix, Debian Debian Linux, Mandrakesoft Mandrake Linux, Microsoft Windows 98, Microsoft Windows 98Se.