Vulnerability Description
IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian | Debian Linux | 2.1 |
| Linux | Linux Kernel | 2.2.10 |
| Redhat | Linux | 6.0 |
References
- http://archives.neohapsis.com/archives/bugtraq/2000-03/0284.htmlExploitVendor Advisory
- http://www.novell.com/linux/security/advisories/suse_security_announce_48.html
- http://www.securityfocus.com/bid/1078ExploitPatchVendor Advisory
- http://archives.neohapsis.com/archives/bugtraq/2000-03/0284.htmlExploitVendor Advisory
- http://www.novell.com/linux/security/advisories/suse_security_announce_48.html
- http://www.securityfocus.com/bid/1078ExploitPatchVendor Advisory
FAQ
What is CVE-2000-0289?
CVE-2000-0289 is a vulnerability with a CVSS score of 5.0 (MEDIUM). IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established ...
How severe is CVE-2000-0289?
CVE-2000-0289 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2000-0289?
Check the references section above for vendor advisories and patch information. Affected products include: Debian Debian Linux, Linux Linux Kernel, Redhat Linux.