cbcvebase.
CVE-2002-1978
published 2002-12-31

CVE-2002-1978: IPFilter 3.1.1 through 3.4.28 allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP…

PriorityP429high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.01%
78.4th percentile
IPFilter 3.1.1 through 3.4.28 allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that contains the string, causing IPFilter to treat the response as if it were a legitimate PASV command from the server.

Affected

82 ranges· showing 25
VendorProductVersion rangeFixed in
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
darren_reedipfilter
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.