Published: 02/07/2001 Updated: 10/10/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

ip_conntrack_ftp in the IPTables firewall for Linux 2.4 allows remote malicious users to bypass access restrictions for an FTP server via a PORT command that lists an arbitrary IP address and port number, which is added to the RELATED table and allowed by the firewall.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 2.4.1
linux linux kernel 2.4.2
linux linux kernel 2.4.0
linux linux kernel 2.4.3

# source: wwwsecurityfocuscom/bid/2602/info # # The Linux kernel includes a built-in firewall implementation called IPTables IPTables supports stateful inspection of several application protocols, one of which is FTP The inspection is used to facilitate outgoing PORT connections for FTP data transfers when clients or servers are behind f ...

NVD-CWE-Other http://archives.neohapsis.com/archives/bugtraq/2001-04/0271.html http://www.redhat.com/support/errata/RHSA-2001-052.html http://www.securityfocus.com/bid/2602 http://www.redhat.com/support/errata/RHSA-2001-084.html http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-071.php3 https://exchange.xforce.ibmcloud.com/vulnerabilities/6390 https://nvd.nist.gov https://www.exploit-db.com/exploits/20765/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2001-0405

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect