Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4461

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2007-4461
Last Modified 15 Nov 2008 01:57:06
Published 21 Aug 2007 05:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4461

Summary

NuFW 2.2.3, and certain other versions after 2.0, allows remote attackers to bypass time-based packet filtering rules via certain "out of period" choices of packet transmission time.

Vulnerable Systems

Application

  • Nufw 2.2.3


References

CONFIRM - http://www.nufw.org/+NuFW-2-2-4,201+.html

SECUNIA - 26546

OSVDB - 39725

XF - nufw-arrivaltime-security-bypass(36134)

BID - 25379


Last Updated: 27 May 2016 10:45:52