4 matches found
CVE-2007-1497
nfconntrack in netfilter in the Linux kernel before 2.6.20.3 does not set nfctinfo during reassembly of fragmented packets, which leaves the default value as IPCTESTABLISHED and might allow remote attackers to bypass certain rulesets using IPv6 fragments...
CVE-2007-1497
nfconntrack in netfilter in the Linux kernel before 2.6.20.3 does not set nfctinfo during reassembly of fragmented packets, which leaves the default value as IPCTESTABLISHED and might allow remote attackers to bypass certain rulesets using IPv6 fragments...
CVE-2007-1497
nfconntrack in netfilter in the Linux kernel before 2.6.20.3 does not set nfctinfo during reassembly of fragmented packets, which leaves the default value as IPCTESTABLISHED and might allow remote attackers to bypass certain rulesets using IPv6 fragments...
CVE-2007-1497
CVE-2007-1497 affects the Linux kernel nf_conntrack netfilter code prior to 2.6.20.3. During IPv6 fragment reassembly, nfctinfo is not set, leaving the default IP_CT_ESTABLISHED and potentially allowing remote attackers to bypass certain netfilter rulesusing IPv6 fragments. The documented fix is ...