CVE Catalog

CVE-2000-0553

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Elevated risk
1.41%

69th percentile — higher than 69% of all known CVEs

Summary

A race condition in IPFilter firewall 3.4.3 and earlier allows remote attackers to bypass access restrictions when configured with overlapping 'return-rst' and 'keep state' rules.

Risk Assessment

Organizations may be exposed to unauthorized access to resources, potentially leading to serious security breaches.

Recommendation

It is recommended to upgrade to a newer version of IPFilter that does not contain this vulnerability and to review the firewall rule configuration.

Original NVD description (English source)

Race condition in IPFilter firewall 3.4.3 and earlier, when configured with overlapping "return-rst" and "keep state" rules, allows remote attackers to bypass access restrictions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS