Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0289

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2000-0289
Last Modified 10 Sep 2008 03:04:00
Published 27 Mar 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0289

Summary

IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection.

Vulnerable Systems

Operating System

  • Debian Linux 2.1

  • Debian Linux 2.2

  • Linux Kernel 2.2.10

  • Linux Kernel 2.2.12

  • Linux Kernel 2.2.14

  • Redhat Linux 6.0

  • Redhat Linux 6.1

  • Redhat Linux 6.2


References

BID - 1078

BUGTRAQ - 20000327 Security Problems with Linux 2.2.x IP Masquerading

SUSE - 20000520 Security hole in kernel < 2.2.15


Last Updated: 27 May 2016 10:35:38