Vulnerability Description
Shorewall 2.4.x before 2.4.1, 2.2.x before 2.2.5, and 2.0.x before 2.0.17, when MACLIST_TTL is greater than 0 or MACLIST_DISPOSITION is set to ACCEPT, allows remote attackers with an accepted MAC address to bypass other firewall rules or policies.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Shorewall | Shorewall | 2.0.0 |
References
- http://seclists.org/lists/fulldisclosure/2005/Jul/0409.htmlPatchVendor Advisory
- http://secunia.com/advisories/16087PatchVendor Advisory
- http://secunia.com/advisories/17110
- http://secunia.com/advisories/17113
- http://shorewall.net/News.htm#20050717PatchVendor Advisory
- http://www.debian.org/security/2005/dsa-849
- http://www.gentoo.org/security/en/glsa/glsa-200507-20.xml
- http://www.securityfocus.com/bid/14292
- http://www.ubuntu.com/usn/usn-197-1
- http://seclists.org/lists/fulldisclosure/2005/Jul/0409.htmlPatchVendor Advisory
- http://secunia.com/advisories/16087PatchVendor Advisory
- http://secunia.com/advisories/17110
- http://secunia.com/advisories/17113
- http://shorewall.net/News.htm#20050717PatchVendor Advisory
- http://www.debian.org/security/2005/dsa-849
FAQ
What is CVE-2005-2317?
CVE-2005-2317 is a vulnerability with a CVSS score of 7.5 (HIGH). Shorewall 2.4.x before 2.4.1, 2.2.x before 2.2.5, and 2.0.x before 2.0.17, when MACLIST_TTL is greater than 0 or MACLIST_DISPOSITION is set to ACCEPT, allows remote attackers with an accepted MAC addr...
How severe is CVE-2005-2317?
CVE-2005-2317 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-2317?
Check the references section above for vendor advisories and patch information. Affected products include: Shorewall Shorewall.