CVE-2002-1911

Description

ZoneAlarm Pro 3.0 and 3.1, when configured to block all traffic, allows remote attackers to cause a denial of service (CPU and memory consumption) via a large number of SYN packets (SYN flood). NOTE: the vendor was not able to reproduce the issue.

Affected products

• zonelabs / zonealarm3.0 – 3.0
• zonelabs / zonealarm3.1 – 3.1

References

• MISChttp://www.securityfocus.com/bid/5975
• MISChttp://archives.neohapsis.com/archives/bugtraq/2002-10/0238.html
• MISChttp://www.securityfocus.com/archive/1/295434
• MISChttp://www.iss.net/security_center/static/10379.php