Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2004-1799 | First vendor Publication | 2004-12-31 |
Vendor | Cve | Last vendor Modification | 2016-10-18 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 7.5 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
PF in certain OpenBSD versions, when stateful filtering is enabled, does not limit packets for a session to the original interface, which allows remote attackers to bypass intended packet filters via spoofed packets to other interfaces. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1799 |
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Os | 5 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
19105 | OpenBSD PF Alternate Interface Rule Bypass OpenBSD PF contains a flaw that may allow a malicious user to bypass packet filtering. The issue is triggered when PF fails to limit packets for a session to the original interface, allowing a malicious user to spoof packets to other interfaces. However, the spoofed packets must match an existing state session. It is possible that the flaw may allow an attacker to bypass rulesets resulting in a loss of integrity. |
Sources (Detail)
Source | Url |
---|---|
BID | http://www.securityfocus.com/bid/9362 |
FULLDISC | http://marc.info/?l=full-disclosure&m=107331321302113&w=2 |
OSVDB | http://www.osvdb.org/19105 |
Alert History
Date | Informations |
---|---|
2021-05-04 12:02:33 |
|
2021-04-22 01:02:45 |
|
2020-05-23 00:16:04 |
|
2016-10-18 12:01:28 |
|
2016-06-28 15:07:56 |
|
2013-05-11 11:46:32 |
|