CVE-2001-1388Allocation of Resources Without Limits or Throttling in Iptables

CWE-770Allocation of Resources Without Limits or Throttling5 documents5 sources
Severity
5.0MEDIUMNVD
EPSS
0.4%
top 37.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Netfilter Iptables
Timeline
PublishedNov 5
Latest updateApr 30

Description

iptables before 1.2.4 does not accurately convert rate limits that are specified on the command line, which could allow attackers or users to generate more or less traffic than intended by the administrator.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDnetfilter/iptables< 1.2.4

Patches

Patch: bugzilla.redhat.comPatch: bugzilla.redhat.com

🔴Vulnerability Details

2
GHSA
GHSA-2wqm-g7m4-4gj8: iptables before 12022-04-30
CVEList
CVE-2001-1388: iptables before 12002-08-31

📋Vendor Advisories

1
Red Hat
security flaw2001-10-30

💬Community

1
Bugzilla
CVE-2001-1388 security flaw2018-08-16
CVE-2001-1388 — Netfilter Iptables vulnerability | cvebase