Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0183

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0183
Last Modified 10 Sep 2008 03:07:23
Published 26 Mar 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0183

Summary

ipfw and ip6fw in FreeBSD 4.2 and earlier allows remote attackers to bypass access restrictions by setting the ECE flag in a TCP packet, which makes the packet appear to be part of an established connection.

Vulnerable Systems

Operating System

  • Freebsd 3.0

  • Freebsd 3.1

  • Freebsd 3.3

  • Freebsd 3.4

  • Freebsd 3.5

  • Freebsd 3.5.1

  • Freebsd 4.0

  • Freebsd 4.1

  • Freebsd 4.1.1

  • Freebsd 4.2


References

BID - 2293

FREEBSD - FreeBSD-SA-01:08

XF - ipfw-bypass-firewall(5998)

BUGTRAQ - 20010125 ecepass - proof of concept code for FreeBSD ipfw bypass

OSVDB - 1743

CIAC - L-029


Last Updated: 27 May 2016 10:36:10