Search /
Docfinder:

RESEARCH CENTERS

Applications
Careers
Convergence
Data Center
LANs
Net/Systems Mgmt.
NOSes
Outsourcing
Routers/Switches
Security
Service Providers
Small/Med.Business
Storage
WAN Services
Web/e-commerce
Wireless/Mobile

SITE RESOURCES

Daily News
Newsletters
This Week in NW
Tests/Reviews
Buyer's Guides
Opinion
Forums
Special Issues
How to/Primers
Case Studies
Network Life
Encyclopedia
IT Briefings

TODAY'S NEWS

•	iPhone 5 rumor rollup for the week ending Feb. 10
•	Forget Public Cloud or Private Cloud, It's All About Hyper-Hybrid
•
•	Apple passes HP as largest tech company
•	How to get the IRS' attention: Forge nearly $8 million in tax returns, steal identities
•	Much of Western U.S. is a 3G wasteland, says FCC
•	How the Phoenix Suns basketball team takes on social media attacks
•	Microsoft details Windows 8 for ARM devices
•	Resume Makeover: How an Information Security Professional Can Target CSO Jobs
•	Blogger exposes major Google Wallet security flaw
•	Web app lets enterprise set security, sharing for Google Apps users
•	Cloudscaling to offer OpenStack private cloud platform
•	Macs take on the enterprise
•	Valentine's Day Patch Tuesday: Microsoft to issue 9 patches, 4 critical
•	Mobile World Congress sneak peek: Quad-core smartphones, Ice Cream Sandwich & more
•	More breaking news

/

ISS patches hole in BlackICE firewall

By Sam Costello
IDG News Service, 02/11/02

A week after first issuing an alert about the problem, firewall and intrusion-detection system vendor Internet Security Systems released a patch to fix a security flaw in its BlackICE security products that could have led to a denial-of-service attack.

The flaw affects BlackICE Defender, BlackICE Agent and RealSecure Server Sensor running on Windows 2000 and Windows XP and can be exploited by sending a flood of modified ping packets to the vulnerable system, ISS said in its alert. The flood of packets would cause the applications' memory to be overwritten, either crashing or destabilizing the program, ISS said. Attackers may also be able to control what part of the memory is overwritten, allowing them to execute code of their choice, ISS continued.

The risk of the flaw to corporate users is likely to be small, according to ISS, since most corporate firewalls are configured to block the kind of traffic that would be used in this attack.

Affected versions of the software are: BlackICE Defender 2.9, BlackICE Defender for Server 2.9, BlackICE Agent for Workstation 3.0 and 3.1 and BlackICE Agent for Server 3.0 and 3.1, all on Windows 2000 and XP. RealSecure Server Sensor 6.0.1 and 6.5 on Windows 2000 are also affected.

Links to the appropriate patches are available on the front page of ISS' Web site.

ISS acquired the BlackICE line of products in May 2001 when it purchased Network ICE.

The IDG News Service is a Network World affiliate.

RELATED LINKS

NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!

New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE

Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.