Shorewall MACLIST Firewall Rules Bypass Vulnerability

Bugtraq ID: 14292
Class: Design Error
CVE: CVE-2005-2317
Remote: Yes
Local: No
Published: Jul 18 2005 12:00AM
Updated: Jul 12 2009 04:06PM
Credit: Supernaut <supernaut@ns.sympatico.ca> reported this vulnerability to the vendor.
Vulnerable: Ubuntu Ubuntu Linux 5.0 4 powerpc
Ubuntu Ubuntu Linux 5.0 4 i386
Ubuntu Ubuntu Linux 5.0 4 amd64
Ubuntu Ubuntu Linux 4.1 ppc
Ubuntu Ubuntu Linux 4.1 ia64
Ubuntu Ubuntu Linux 4.1 ia32
Shorewall Shorewall 2.4.1
Shorewall Shorewall 2.4 .0
Shorewall Shorewall 2.2.5
Shorewall Shorewall 2.2.4
Shorewall Shorewall 2.2.3
Shorewall Shorewall 2.2.2
Shorewall Shorewall 2.2.1
Shorewall Shorewall 2.2 .0
Shorewall Shorewall 2.0.17
Shorewall Shorewall 2.0.16
Shorewall Shorewall 2.0.15
Shorewall Shorewall 2.0.14
Shorewall Shorewall 2.0.13
Shorewall Shorewall 2.0.12
Shorewall Shorewall 2.0.11
Shorewall Shorewall 2.0.10
Shorewall Shorewall 2.0.9
Shorewall Shorewall 2.0.8
Shorewall Shorewall 2.0.7
Shorewall Shorewall 2.0.6
Shorewall Shorewall 2.0.5
Shorewall Shorewall 2.0.4
Shorewall Shorewall 2.0.3 c
Shorewall Shorewall 2.0.3 b
Shorewall Shorewall 2.0.3 a
Shorewall Shorewall 2.0.3
Shorewall Shorewall 2.0.2
Shorewall Shorewall 2.0.1
+ Mandriva Linux Mandrake 10.0 AMD64
+ Mandriva Linux Mandrake 10.0
Shorewall Shorewall 2.0
Mandriva Linux Mandrake 10.2 x86_64
Mandriva Linux Mandrake 10.2
Mandriva Linux Mandrake 10.1 x86_64
Mandriva Linux Mandrake 10.1
MandrakeSoft Multi Network Firewall 2.0
MandrakeSoft Corporate Server 3.0 x86_64
MandrakeSoft Corporate Server 3.0
Gentoo Linux
Debian Linux 3.1 sparc
Debian Linux 3.1 s/390
Debian Linux 3.1 ppc
Debian Linux 3.1 mipsel
Debian Linux 3.1 mips
Debian Linux 3.1 m68k
Debian Linux 3.1 ia-64
Debian Linux 3.1 ia-32
Debian Linux 3.1 hppa
Debian Linux 3.1 arm
Debian Linux 3.1 amd64
Debian Linux 3.1 alpha
Debian Linux 3.1
Debian Linux 3.0 sparc
Debian Linux 3.0 s/390
Debian Linux 3.0 ppc
Debian Linux 3.0 mipsel
Debian Linux 3.0 mips
Debian Linux 3.0 m68k
Debian Linux 3.0 ia-64
Debian Linux 3.0 ia-32
Debian Linux 3.0 hppa
Debian Linux 3.0 arm
Debian Linux 3.0 alpha
Debian Linux 3.0
Not Vulnerable: Shorewall Shorewall 2.4.2
+ Gentoo Linux


 

Privacy Statement
Copyright 2010, SecurityFocus