本ページは darren_reed ipfilter に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2009-1476 | Buffer overflow in lib/load_http.c in ippool in Darren Reed IPFilter (aka IP Filter) 4.1.31 allows local users to gain privileges via vectors involving a long hostname in a URL. | [email protected] | 7.2 | 0.47% | 2009-05-26 | 2026-06-16 |
| CVE-2002-1978 | IPFilter 3.1.1 through 3.4.28 allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that contains the string, causing IPFilter to treat the response as if it were a legitimate PASV command from the server. | [email protected] | 7.5 | 2.01% | 2002-12-31 | 2026-06-16 |
| CVE-2001-0402 | IPFilter 3.4.16 and earlier does not include sufficient session information in its cache, which allows remote attackers to bypass access restrictions by sending fragmented packets to a restricted port after sending unfragmented packets to an unrestricted port. | [email protected] | 7.5 | 2.44% | 2001-06-18 | 2026-06-16 |
| CVE-2000-0553 | Race condition in IPFilter firewall 3.4.3 and earlier, when configured with overlapping "return-rst" and "keep state" rules, allows remote attackers to bypass access restrictions. | [email protected] | 2.6 | 1.41% | 2000-05-26 | 2026-06-16 |
| CVE-1999-1244 | IPFilter 3.2.3 through 3.2.10 allows local users to modify arbitrary files via a symlink attack on the saved output file. | [email protected] | 7.2 | 0.33% | 1999-04-15 | 2026-06-16 |