Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0704

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-0704
Last Modified 05 Sep 2008 04:28:44
Published 26 Jul 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0704

Summary

The Network Address Translation (NAT) capability for Netfilter ("iptables") 1.2.6a and earlier leaks translated IP addresses in ICMP error messages.

Vulnerable Systems

Operating System

  • Linux Kernel 2.4.10

  • Linux Kernel 2.4.11

  • Linux Kernel 2.4.12

  • Linux Kernel 2.4.13

  • Linux Kernel 2.4.14

  • Linux Kernel 2.4.15

  • Linux Kernel 2.4.16

  • Linux Kernel 2.4.17

  • Linux Kernel 2.4.18

  • Linux Kernel 2.4.19

  • Linux Kernel 2.4.4

  • Linux Kernel 2.4.5

  • Linux Kernel 2.4.6

  • Linux Kernel 2.4.7

  • Linux Kernel 2.4.8

  • Linux Kernel 2.4.9


References

BID - 4699

REDHAT - RHSA-2002:086

XF - linux-netfilter-information-leak(9043)

MANDRAKE - MDKSA-2002:030

HP - HPSBTL0205-039

BUGTRAQ - 20020508 [CARTSA-20020402] Linux Netfilter NAT/ICMP code information leak


Last Updated: 27 May 2016 10:37:02