Linux Kernel IRC DCC Connection Tracking Module Arbitrary Port Access Vulnerability

The Linux kernel is a freely available, open source kernel originally written by Linus Torvalds. It is community maintained, and freely distributed for use with Linux systems.

The netfilter connection tracking code in the Linux kernel does not properly handle DCC chats. When a DCC chat is initiated, the expected behavior of the firewall is to listen on a range of ports for a connection request from a specific IP address. When the connection from the specific IP is made, the DCC chat is initiated. However, the code included in the affected kernels does not properly restrict access, listening on a range of ports for a connection from any IP address.


 

Privacy Statement
Copyright 2010, SecurityFocus