CVE-2001-0402

2001-09-1804:00:00

mitre

www.cve.org

6.5 Medium

AI Score

Confidence

Low

0.026 Low

EPSS

Percentile

90.3%

JSON

IPFilter 3.4.16 and earlier does not include sufficient session information in its cache, which allows remote attackers to bypass access restrictions by sending fragmented packets to a restricted port after sending unfragmented packets to an unrestricted port.

References

archives.neohapsis.com/archives/freebsd/2001-04/0338.html

marc.info/?l=bugtraq&m=98679734015538&w=2

exchange.xforce.ibmcloud.com/vulnerabilities/6331