Search /
Docfinder:

RESEARCH CENTERS

Applications
Careers
Convergence
Data Center
LANs
Net/Systems Mgmt.
NOSes
Outsourcing
Routers/Switches
Security
Service Providers
Small/Med.Business
Storage
WAN Services
Web/e-commerce
Wireless/Mobile

SITE RESOURCES

Daily News
Newsletters
This Week in NW
Tests/Reviews
Buyer's Guides
Opinion
Forums
Special Issues
How to/Primers
Case Studies
Network Life
Encyclopedia
IT Briefings

TODAY'S NEWS

•	Cisco all but kills Cius tablet computer
•	Windows 8 Update: Steve Ballmer's 80-inch Windows 8 tablet
•	Gartner: Don't trust cloud provider to protect your corporate assets
•	Take me out to the ballgame, with 4G
•	Most OpenOffice users run Windows
•	Smartphones with quad-core chips and 4G LTE coming soon
•	Government alarm over cyberattacks validated by terrorists
•	Lawmakers call on DOJ to reopen investigation into Google Wi-Fi spying
•	Researchers propose TLS extension to detect rogue SSL certificates
•	IaaS: Renting on-demand technology
•	Yahoo Axis may be game changer for search and the troubled company
•	Android, Apple Own 80% of Global Smartphone Market; Microsoft's Share, 2.2%
•	Managing Mobile Mania
•	Proposed New York Legislation Would Ban Anonymous Online Comments
•	Supercomputer to connect to 400PB of storage via Ethernet
•	More breaking news

/

ISS patches hole in BlackICE firewall

By Sam Costello
IDG News Service, 02/11/02

A week after first issuing an alert about the problem, firewall and intrusion-detection system vendor Internet Security Systems released a patch to fix a security flaw in its BlackICE security products that could have led to a denial-of-service attack.

The flaw affects BlackICE Defender, BlackICE Agent and RealSecure Server Sensor running on Windows 2000 and Windows XP and can be exploited by sending a flood of modified ping packets to the vulnerable system, ISS said in its alert. The flood of packets would cause the applications' memory to be overwritten, either crashing or destabilizing the program, ISS said. Attackers may also be able to control what part of the memory is overwritten, allowing them to execute code of their choice, ISS continued.

The risk of the flaw to corporate users is likely to be small, according to ISS, since most corporate firewalls are configured to block the kind of traffic that would be used in this attack.

Affected versions of the software are: BlackICE Defender 2.9, BlackICE Defender for Server 2.9, BlackICE Agent for Workstation 3.0 and 3.1 and BlackICE Agent for Server 3.0 and 3.1, all on Windows 2000 and XP. RealSecure Server Sensor 6.0.1 and 6.5 on Windows 2000 are also affected.

Links to the appropriate patches are available on the front page of ISS' Web site.

ISS acquired the BlackICE line of products in May 2001 when it purchased Network ICE.

The IDG News Service is a Network World affiliate.

RELATED LINKS

NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!

New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE

Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.