Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2007-1497

Опубликовано: 16 мар. 2007
Источник: ubuntu
Приоритет: medium
CVSS2: 5

Описание

nf_conntrack in netfilter in the Linux kernel before 2.6.20.3 does not set nfctinfo during reassembly of fragmented packets, which leaves the default value as IP_CT_ESTABLISHED and might allow remote attackers to bypass certain rulesets using IPv6 fragments.

РелизСтатусПримечание
dapper

released

2.6.15-29.58
devel

DNE

edgy

DNE

feisty

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

edgy

released

2.6.17.1-12.40
feisty

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

edgy

DNE

feisty

not-affected

upstream

needs-triage

Показывать по

Ссылки на источники

5 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2007-1497

redhat
больше 18 лет назад

nf_conntrack in netfilter in the Linux kernel before 2.6.20.3 does not set nfctinfo during reassembly of fragmented packets, which leaves the default value as IP_CT_ESTABLISHED and might allow remote attackers to bypass certain rulesets using IPv6 fragments.

nvd логотип

CVE-2007-1497

nvd
больше 18 лет назад

nf_conntrack in netfilter in the Linux kernel before 2.6.20.3 does not set nfctinfo during reassembly of fragmented packets, which leaves the default value as IP_CT_ESTABLISHED and might allow remote attackers to bypass certain rulesets using IPv6 fragments.

debian логотип

CVE-2007-1497

debian
больше 18 лет назад

nf_conntrack in netfilter in the Linux kernel before 2.6.20.3 does not ...

github логотип

GHSA-9499-r8hj-4cg4

github
больше 3 лет назад

nf_conntrack in netfilter in the Linux kernel before 2.6.20.3 does not set nfctinfo during reassembly of fragmented packets, which leaves the default value as IP_CT_ESTABLISHED and might allow remote attackers to bypass certain rulesets using IPv6 fragments.

fstec логотип

BDU:2015-02531

fstec
почти 11 лет назад

Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность защищаемой информации

5 Medium

CVSS2