Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0402


Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0402
Last Modified 05 Sep 2008 04:24:01
Published 18 Jun 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



IPFilter 3.4.16 and earlier does not include sufficient session information in its cache, which allows remote attackers to bypass access restrictions by sending fragmented packets to a restricted port after sending unfragmented packets to an unrestricted port.

Vulnerable Systems

Operating System

  • Freebsd 4.1

  • Openbsd 2.8


  • Darren Reed Ipfilter 3.4.16


BUGTRAQ - 20010408 A fragmentation attack against IP Filter

FREEBSD - FreeBSD-SA-01:32

XF - ipfilter-access-ports(6331)

Last Updated: 27 May 2016 10:36:14