Shorewall MACLIST Firewall Rules Bypass Vulnerability

Shorewall MACLIST Firewall Rules Bypass Vulnerability

Shorewall is susceptible to a firewall rules bypass vulnerability. This issue is due to a failure of the software to properly implement expected firewall rules for MAC address-based filtering.

This issue arrises when 'MACLIST_TTL' is greater than 0, or 'MACLIST_DISPOSITION' is configured as 'ACCEPT'.

This vulnerability allows attackers to bypass firewall rules, letting them attack protected services and computers without further restriction.

This also issue leads to a false sense of security by firewall administrators.