CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2001-0969

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1670%
EPSS Percentile19.26th
Published2001年8月31日
Last Modified2026年4月16日

Vulnerability Description

ipfw in FreeBSD does not properly handle the use of "me" in its rules when point to point interfaces are used, which causes ipfw to allow connections from arbitrary remote hosts.

Affected Platforms (CPE)

💻
Freebsd

Freebsd

= 4.3

References & Advisories

🔗 ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:53.ipfw.asc
🔗 http://www.osvdb.org/1937
🔗 http://www.securityfocus.com/bid/3206
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/7002
🔗 ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:53.ipfw.asc
🔗 http://www.osvdb.org/1937
🔗 http://www.securityfocus.com/bid/3206
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/7002

相關漏洞威脅

CVE-1999-079810.0

Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type.

CVE-2004-105310.0

Integer overflow in fetch on FreeBSD 4.1 through 5.3 allows remote malicious servers to execute arbitrary code via certain HTTP he...

CVE-1999-032310.0

FreeBSD mmap function allows users to modify append-only or immutable files.

CVE-2005-070810.0

The sendfile system call in FreeBSD 4.8 through 4.11 and 5 through 5.4 can transfer portions of kernel memory if a file is truncat...