Vulnerability Details CVE-2001-0851
Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.0%
CVSS Severity
CVSS v2 Score 5.0
References
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000432
- http://www.caldera.com/support/security/advisories/CSSA-2001-038.0.txt
- http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-082.php3
- http://www.linuxsecurity.com/advisories/other_advisory-1683.html
- http://www.novell.com/linux/security/advisories/2001_039_kernel2_txt.html
- http://www.redhat.com/support/errata/RHSA-2001-142.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7461
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000432
- http://www.caldera.com/support/security/advisories/CSSA-2001-038.0.txt
- http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-082.php3
- http://www.linuxsecurity.com/advisories/other_advisory-1683.html
- http://www.novell.com/linux/security/advisories/2001_039_kernel2_txt.html
- http://www.redhat.com/support/errata/RHSA-2001-142.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7461
Products affected by CVE-2001-0851
-
cpe:2.3:a:caldera:openlinux_server:3.1
-
cpe:2.3:a:caldera:openlinux_workstation:3.1
-
cpe:2.3:o:caldera:openlinux:2.3
-
cpe:2.3:o:caldera:openlinux_edesktop:2.4
-
cpe:2.3:o:caldera:openlinux_eserver:2.3.1
-
cpe:2.3:o:linux:linux_kernel:2.0
-
cpe:2.3:o:linux:linux_kernel:2.2.0
-
cpe:2.3:o:linux:linux_kernel:2.4.0
-
cpe:2.3:o:suse:suse_linux:6.3
-
cpe:2.3:o:suse:suse_linux:6.4
-
cpe:2.3:o:suse:suse_linux:7.0
-
cpe:2.3:o:suse:suse_linux:7.1
-
cpe:2.3:o:suse:suse_linux:7.2
-
cpe:2.3:o:suse:suse_linux:7.3