#VU100008 Improper access control in Linux kernel - CVE-2001-0405
Published: July 2, 2001 / Updated: November 7, 2024
Vulnerability identifier: #VU100008
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/U:Clear
CVE-ID: CVE-2001-0405
CWE-ID: CWE-284
Exploitation vector: Remote access
Exploit availability:
Public exploit is available
Vulnerable software:
Linux kernel
Linux kernel
Software vendor:
Linux Foundation
Linux Foundation
Description
The vulnerability allows a remote non-authenticated attacker to read and manipulate data.
ip_conntrack_ftp in the IPTables firewall for Linux 2.4 allows remote attackers to bypass access restrictions for an FTP server via a PORT command that lists an arbitrary IP address and port number, which is added to the RELATED table and allowed by the firewall.
Remediation
Install update from vendor's repository.
External links
- http://archives.neohapsis.com/archives/bugtraq/2001-04/0271.html
- http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-071.php3
- http://www.redhat.com/support/errata/RHSA-2001-052.html
- http://www.redhat.com/support/errata/RHSA-2001-084.html
- http://www.securityfocus.com/bid/2602
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6390