CVE-2000-0289 — Linux vulnerability

5 documents4 sources

Severity

5.0MEDIUMNVD

EPSS

0.8%

top 25.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Debian Linux Linux Kernel Redhat Linux

Timeline

PublishedMar 27

Latest updateApr 30

Description

IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶NVDredhat/linux6.0, 6.1, 6.2+2

▶NVDlinux/linux_kernel2.2.10, 2.2.12, 2.2.14+2

Also affects: Debian Linux 2.1, 2.2

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-899q-9xm5-3mvx: IP masquerading in Linux 2↗2022-04-30

▶

CVEList

CVE-2000-0289: IP masquerading in Linux 2↗2000-10-13

▶

💥Exploits & PoCs

Exploit-DB

Phusion WebServer 1.0 - Long URL Denial of Service↗2002-02-16

▶

Exploit-DB

Phusion WebServer 1.0 - 'URL' Remote Buffer Overflow↗2002-02-16

▶