medium
4.9
CWE
NVD-CWE-Other
Advisory Published
CVE Published
Updated

CVE-2002-2185

First published: Tue Dec 31 2002(Updated: )

The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
SGI IRIX=6.5.16m
SGI IRIX=6.5.6
SGI IRIX=6.5.17f
SGI IRIX=6.5.1
SGI IRIX=6.5.14f
SGI IRIX=6.5.10
SGI IRIX=6.5.12
SGI IRIX=6.5.15f
SGI IRIX=6.5.18f
SGI IRIX=6.5.9
SGI IRIX=6.5.16f
SGI IRIX=6.5.17m
SGI IRIX=6.5.14m
SGI IRIX=6.5.3
SGI IRIX=6.5.8
SGI IRIX=6.5.5
SGI IRIX=6.5.4
SGI IRIX=6.5.15m
SGI IRIX=6.5.11
SGI IRIX=6.5.2
SGI IRIX=6.5
SGI IRIX=6.5.7
SGI IRIX=6.5.18m
SGI IRIX=6.5.13
Red Hat Linux=7.2
Debian GNU/Linux=2.2
Red Hat Enterprise Linux=4.0
Mandrake Linux=8.2
SUSE Linux=7.1
redhat enterprise Linux desktop=3.0
Red Hat Linux=6.2
Red Hat Linux Advanced Workstation=2.1
SUSE Linux=7.1-alpha
Red Hat Enterprise Linux=4.0
Red Hat Enterprise Linux=3.0
Microsoft Windows XP=gold
Mandrake Linux=8.1
Debian GNU/Linux=2.2
Red Hat Linux=7.1
SUSE Linux=7.3
Microsoft Windows 98SE
SUSE Linux=7.0
SUSE Linux=6.4
SUSE Linux=7.3
Red Hat Linux=7.0
Mandrake Linux=8.1
Red Hat Linux=6.2
SUSE Linux=7.0
SUSE Linux=7.0
Red Hat Linux Advanced Workstation=2.1
Mandrake Linux=8.0
SUSE Linux=8.0
Debian GNU/Linux=2.2
Red Hat Linux=7.1
SUSE Linux=6.4
Red Hat Linux=7.1
Red Hat Enterprise Linux=4.0
Debian GNU/Linux=2.2
Red Hat Enterprise Linux=3.0
Microsoft Windows XP
SUSE Linux=7.0-alpha
Red Hat Linux=7.0
Red Hat Linux=7.3
Red Hat Linux=6.2
Red Hat Enterprise Linux=3.0
SUSE Linux=7.1
redhat enterprise Linux desktop=4.0
SUSE Linux=6.4-alpha
Mandrake Linux=8.0
Microsoft Windows 98=gold
Red Hat Linux=7.0
SUSE Linux=7.2
SUSE Linux=7.3
Red Hat Linux=7.2
Debian GNU/Linux=2.2
SUSE Linux=7.1
Debian GNU/Linux=2.2

Remedy

http://secunia.com/advisories/18510

Remedy

http://secunia.com/advisories/18562

Remedy

http://secunia.com/advisories/18684

Remedy

http://www.cs.ucsb.edu/~krishna/igmp_dos/

Remedy

http://www.redhat.com/support/errata/RHSA-2006-0101.html

Remedy

http://www.redhat.com/support/errata/RHSA-2006-0140.html

Remedy

http://www.redhat.com/support/errata/RHSA-2006-0190.html

Remedy

http://www.redhat.com/support/errata/RHSA-2006-0191.html

Remedy

http://www.securityfocus.com/bid/5020

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2002-2185?

    CVE-2002-2185 has a moderate severity level, enabling a denial of service through IGMP membership reports.

  • How do I fix CVE-2002-2185?

    To mitigate CVE-2002-2185, ensure that your network devices are configured to filter or block invalid IGMP messages.

  • Which systems are affected by CVE-2002-2185?

    CVE-2002-2185 affects several versions of SGI IRIX, Red Hat Linux, and SUSE Linux among others.

  • What is the impact of CVE-2002-2185?

    The impact of CVE-2002-2185 is that it can cause a denial of service, effectively disconnecting multicast groups from the router.

  • Can CVE-2002-2185 be exploited remotely?

    Yes, CVE-2002-2185 can be exploited locally by users to disrupt network communication.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203