| Vulnerability Name: | CVE-2001-0969 (CCN-7002) | ||||||||
| Assigned: | 2001-08-17 | ||||||||
| Published: | 2001-08-17 | ||||||||
| Updated: | 2017-10-10 | ||||||||
| Summary: | ipfw in FreeBSD does not properly handle the use of "me" in its rules when point to point interfaces are used, which causes ipfw to allow connections from arbitrary remote hosts. | ||||||||
| CVSS v3 Severity: | 10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: FREEBSD Type: Patch, Vendor Advisory FreeBSD-SA-01:53 Source: CCN Type: FreeBSD Security Advisory FreeBSD-SA-01:53 ipfw `me' on P2P interfaces matches remote address Source: MITRE Type: CNA CVE-2001-0969 Source: OSVDB Type: UNKNOWN 1937 Source: CCN Type: OSVDB ID: 1937 FreeBSD IPFW me PPP Ruleset Bypass Source: BID Type: Patch, Vendor Advisory 3206 Source: CCN Type: BID-3206 FreeBSD IPFW Me Point To Point Interface Address Addition Vulnerability Source: XF Type: UNKNOWN ipfw-me-unauthorized-access(7002) Source: XF Type: UNKNOWN ipfw-me-unauthorized-access(7002) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||