CVE-2003-0785 — HIGH (7.5) — White Hats Nepal

Vulnerability Description

ipmasq before 3.5.12, in certain configurations, may forward packets to the external interface even if the packets are not associated with an established connection, which could allow remote attackers to bypass intended filtering.

CVSS Score

7.5

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Brian Bassett	Ipmasq	3.5.10

References

http://www.debian.org/security/2003/dsa-389PatchVendor Advisory
http://www.debian.org/security/2003/dsa-389PatchVendor Advisory

FAQ

What is CVE-2003-0785?

CVE-2003-0785 is a vulnerability with a CVSS score of 7.5 (HIGH). ipmasq before 3.5.12, in certain configurations, may forward packets to the external interface even if the packets are not associated with an established connection, which could allow remote attackers...

How severe is CVE-2003-0785?

CVE-2003-0785 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2003-0785?

Check the references section above for vendor advisories and patch information. Affected products include: Brian Bassett Ipmasq.