CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
88.5%
ip_conntrack_ftp in the IPTables firewall for Linux 2.4 allows remote attackers to bypass access restrictions for an FTP server via a PORT command that lists an arbitrary IP address and port number, which is added to the RELATED table and allowed by the firewall.
Vendor | Product | Version | CPE |
---|---|---|---|
linux | linux_kernel | 2.4.1 | cpe:/o:linux:linux_kernel:2.4.1::: |
linux | linux_kernel | 2.4.0 | cpe:/o:linux:linux_kernel:2.4.0::: |
linux | linux_kernel | 2.4.2 | cpe:/o:linux:linux_kernel:2.4.2::: |
linux | linux_kernel | 2.4.0 | cpe:/o:linux:linux_kernel:2.4.0:test1:: |
linux | linux_kernel | 2.4.3 | cpe:/o:linux:linux_kernel:2.4.3::: |