Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0851

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2001-0851
Last Modified 10 Sep 2008 03:09:05
Published 06 Dec 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0851

Summary

Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie.

Vulnerable Systems

Operating System

  • Caldera Openlinux 2.3

  • Caldera Openlinux Edesktop 2.4

  • Caldera Openlinux Eserver 2.3.1

  • Linux Kernel 2.0

  • Linux Kernel 2.2.0

  • Linux Kernel 2.4.0

  • Suse Linux 6.3

  • Suse Linux 6.4

  • Suse Linux 7.0

  • Suse Linux 7.1

  • Suse Linux 7.2

  • Suse Linux 7.3

Application

  • Caldera Openlinux Server 3.1

  • Caldera Openlinux Workstation 3.1


References

ENGARDE - ESA-20011106-01

CALDERA - CSSA-2001-38.0

XF - linux-syncookie-bypass-filter(7461)

REDHAT - RHSA-2001:142

SUSE - SuSE-SA:2001:039

MANDRAKE - MDKSA-2001:082

CONECTIVA - CLA-2001:432


Last Updated: 27 May 2016 10:36:25