CVE-2002-0515
First published: Tue Jun 11 2002(Updated: )
IPFilter 3.4.25 and earlier sets a different TTL when a port is being filtered than when it is not being filtered, which allows remote attackers to identify filtered ports by comparing TTLs.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Phildev IPFilter | =3.4.25 | |
| HP-UX IPFilter | <=3.4.25 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2002-0515?
CVE-2002-0515 is considered a medium severity vulnerability due to its potential to allow remote attackers to identify filtered ports.
How do I fix CVE-2002-0515?
To fix CVE-2002-0515, upgrade to a later version of IPFilter that addresses the TTL inconsistency.
What systems are affected by CVE-2002-0515?
CVE-2002-0515 affects IPFilter versions 3.4.25 and earlier, including variants from Darren Reed and Phildev.
What is the impact of CVE-2002-0515?
The impact of CVE-2002-0515 is that it allows attackers to determine which ports are being filtered by analyzing TTL values.
Is CVE-2002-0515 exploitable remotely?
Yes, CVE-2002-0515 is exploitable remotely, making it a concern for network security.
- agent/type
- agent/severity
- agent/description
- agent/weakness
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/author
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/darren reed
- canonical/phildev ipfilter
- version/phildev ipfilter/3.4.25
- vendor/phildev
- canonical/hp-ux ipfilter
- version/hp-ux ipfilter/3.4.25