vulnerability in iptables

To:	lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Subject:	vulnerability in iptables
From:	"Douglas F. Elznic" <dfelznic@xxxxxxx>
Date:	Thu, 19 Apr 2001 14:59:42 -0400 (EDT)

I was wondering if anyone has seen this vulnerability:
http://www.lwn.net/2001/0419/a/netfilter.php3

 Impact: If an attacker can establish an FTP connection passing through a
Linux 2.4.x IPTables firewall with the state options allowing "related"
connections (almost 100% do), he can insert entries into the firewall's
RELATED ruleset table allowing the FTP Server to connect to any host and
port protected by the firewalls rules, including the firewall itself.

There is a patch available:
http://netfilter.samba.org/security-fix/

Is this goin to affect the latest patch?

<Prev in Thread]	Current Thread	[Next in Thread>
ipvs-0.2.10 available, Wensong Zhang Re: ipvs-0.2.10 available, Julian Anastasov Re: ipvs-0.2.10 available, Wensong Zhang vulnerability in iptables, Douglas F. Elznic <= Re: ipvs-0.2.10 available, Julian Anastasov

Previous by Date:	Shared ethernet for heartbeat, Joseph Mack
Next by Date:	Two Box Fault Tolerance - Possible?, Doug Sisk
Previous by Thread:	Re: ipvs-0.2.10 available, Wensong Zhang
Next by Thread:	Re: ipvs-0.2.10 available, Julian Anastasov
Indexes:	[Date] [Thread] [Top] [All Lists]