CVE-2001-1533

Published: Dec 31, 2001Modified: Apr 16, 2026

5.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Exploitability: 3.9 / Impact: 1.4

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

Microsoft Internet Security and Acceleration (ISA) Server 2000 allows remote attackers to cause a denial of service via a flood of fragmented UDP packets. NOTE: the vendor disputes this issue, saying that it requires high bandwidth to exploit, and the server does not experience any instability. Therefore this "laws of physics" issue might not be included in CVE

Affected (1)

Products: Microsoft: Isa Server

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Microsoft Isa Server	Version 2000

References (8)

http://cert.uni-stuttgart.de/archive/bugtraq/2001/11/msg00018.html

Source: cve@mitre.org

http://cert.uni-stuttgart.de/archive/bugtraq/2001/11/msg00031.html

Source: cve@mitre.org

http://www.iss.net/security_center/static/7446.php

Source: cve@mitre.org

http://www.securityfocus.com/bid/3501

Source: cve@mitre.org

http://cert.uni-stuttgart.de/archive/bugtraq/2001/11/msg00018.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://cert.uni-stuttgart.de/archive/bugtraq/2001/11/msg00031.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.iss.net/security_center/static/7446.php

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/3501

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.