Bypassing Access Restrictions in IPTables Firewall for Linux 2.4 via ip_conntrack_ftp Vulnerability

Bypassing Access Restrictions in IPTables Firewall for Linux 2.4 via ip_conntrack_ftp Vulnerability

CVE-2001-0405 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

ip_conntrack_ftp in the IPTables firewall for Linux 2.4 allows remote attackers to bypass access restrictions for an FTP server via a PORT command that lists an arbitrary IP address and port number, which is added to the RELATED table and allowed by the firewall.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.