Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-197-1
HistoryOct 10, 2005 - 12:00 a.m.

Shorewall vulnerability

2005-10-1000:00:00
ubuntu.com
65

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.2 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.5%

JSON

Releases

  • Ubuntu 5.04
  • Ubuntu 4.10

Details

A firewall bypass vulnerability has been found in shorewall. If
MACLIST_TTL was set to a value greater than 0 or MACLIST_DISPOSITION
was set to “ACCEPT” in /etc/shorewall/shorewall.conf, and a client was
positively identified through its MAC address, that client bypassed
all other policies/rules in place. This could allow external computers
to get access to ports that are intended to be restricted by the
firewall policy.

Please note that this does not affect the default configuration, which
does not enable MAC based client identification.

OSVersionArchitecturePackageVersionFilename
Ubuntu5.04noarchshorewall< *UNKNOWN
Ubuntu4.10noarchshorewall< *UNKNOWN

Related

cve 1
nessus 4
gentoo 1
debian 2
ubuntucve 1
openvas 4
cvelist 1
nvd 1
debiancve 1
cve
cve
CVE-2005-2317
2005-07-19 04:00:00
nessus
nessus
Ubuntu 4.10 / 5.04 : shorewall vulnerability (USN-197-1)
2006-01-15 00:00:00
Debian DSA-849-1 : shorewall - programming error
2005-10-11 00:00:00
Mandrake Linux Security Advisory : shorewall (MDKSA-2005:123)
2005-07-21 00:00:00
gentoo
gentoo
Shorewall: Security policy bypass
2005-07-22 00:00:00
debian
debian
[SECURITY] [DSA 849-1] New shorewall packages fix firewall bypass
2005-10-08 10:04:56
[SECURITY] [DSA 849-1] New shorewall packages fix firewall bypass
2005-10-08 10:04:56
ubuntucve
ubuntucve
CVE-2005-2317
2005-07-19 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-849-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 849-1 (shorewall)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200507-20 (shorewall)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2005-2317
2005-07-19 04:00:00
nvd
nvd
CVE-2005-2317
2005-07-19 04:00:00
debiancve
debiancve
CVE-2005-2317
2005-07-19 04:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.2 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.5%

JSON
Related for USN-197-1
cve1nessus4gentoo1debian2ubuntucve1openvas4cvelist1nvd1debiancve1