CVE-2002-1976

First published: Tue Dec 31 2002(Updated: )

ifconfig, when used on the Linux kernel 2.2 and later, does not report when the network interface is in promiscuous mode if it was put in promiscuous mode using PACKET_MR_PROMISC, which could allow attackers to sniff the network without detection, as demonstrated using libpcap.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Linux Linux kernel	=2.4.15
Linux Linux kernel	=2.2.10
Linux Linux kernel	=2.4.11
Linux Linux kernel	=2.2.13
Linux Linux kernel	=2.2.0
Linux Linux kernel	=2.2.6
Linux Linux kernel	=2.4.19-pre1
Linux Linux kernel	=2.4.12
Linux Linux kernel	=2.4.13
Linux Linux kernel	=2.4.19-pre4
Linux Linux kernel	=2.2.18
Linux Linux kernel	=2.2.3
Linux Linux kernel	=2.4.17
Linux Linux kernel	=2.2.2
Linux Linux kernel	=2.3.0
Linux Linux kernel	=2.2.5
Linux Linux kernel	=2.4.7
Linux Linux kernel	=2.3.99
Linux Linux kernel	=2.2.8
Linux Linux kernel	=2.4.9
Linux Linux kernel	=2.2.7
Linux Linux kernel	=2.2.16
Linux Linux kernel	=2.2.1
Linux Linux kernel	=2.2.12
Linux Linux kernel	=2.4.19-pre6
Linux Linux kernel	=2.4.10
Linux Linux kernel	=2.4.0
Linux Linux kernel	=2.4.2
Linux Linux kernel	=2.4.19-pre2
Linux Linux kernel	=2.4.16
Linux Linux kernel	=2.4.8
Linux Linux kernel	=2.4.19-pre3
Linux Linux kernel	=2.4.14
Linux Linux kernel	=2.2.19
Linux Linux kernel	=2.4.18
Linux Linux kernel	=2.4.19-pre5
Linux Linux kernel	=2.2.20
Linux Linux kernel	=2.4.5
Linux Linux kernel	=2.2.15
Linux Linux kernel	=2.4.18
Linux Linux kernel	=2.2.4
Linux Linux kernel	=2.4.3
Linux Linux kernel	=2.2.14
Linux Linux kernel	=2.2.11
Linux Linux kernel	=2.4.1
Linux Linux kernel	=2.4.4
Linux Linux kernel	=2.2.17
Linux Linux kernel	=2.4.6
Linux Linux kernel	=2.2.9

Remedy

http://www.securityfocus.com/bid/5304

Never miss a vulnerability like this again

Reference Links

collector/nvd-historical
collector/nvd-index
agent/references
agent/severity
agent/weakness
agent/author
agent/remedy
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/description
agent/event
agent/type
agent/tags
collector/mitre-cve
source/MITRE
vendor/linux
canonical/linux linux kernel
version/linux linux kernel/2.4.15
version/linux linux kernel/2.2.10
version/linux linux kernel/2.4.11
version/linux linux kernel/2.2.13
version/linux linux kernel/2.2.0
version/linux linux kernel/2.2.6
version/linux linux kernel/2.4.19-pre1
version/linux linux kernel/2.4.12
version/linux linux kernel/2.4.13
version/linux linux kernel/2.4.19-pre4
version/linux linux kernel/2.2.18
version/linux linux kernel/2.2.3
version/linux linux kernel/2.4.17
version/linux linux kernel/2.2.2
version/linux linux kernel/2.3.0
version/linux linux kernel/2.2.5
version/linux linux kernel/2.4.7
version/linux linux kernel/2.3.99
version/linux linux kernel/2.2.8
version/linux linux kernel/2.4.9
version/linux linux kernel/2.2.7
version/linux linux kernel/2.2.16
version/linux linux kernel/2.2.1
version/linux linux kernel/2.2.12
version/linux linux kernel/2.4.19-pre6
version/linux linux kernel/2.4.10
version/linux linux kernel/2.4.0
version/linux linux kernel/2.4.2
version/linux linux kernel/2.4.19-pre2
version/linux linux kernel/2.4.16
version/linux linux kernel/2.4.8
version/linux linux kernel/2.4.19-pre3
version/linux linux kernel/2.4.14
version/linux linux kernel/2.2.19
version/linux linux kernel/2.4.18
version/linux linux kernel/2.4.19-pre5
version/linux linux kernel/2.2.20
version/linux linux kernel/2.4.5
version/linux linux kernel/2.2.15
version/linux linux kernel/2.2.4
version/linux linux kernel/2.4.3
version/linux linux kernel/2.2.14
version/linux linux kernel/2.2.11
version/linux linux kernel/2.4.1
version/linux linux kernel/2.4.4
version/linux linux kernel/2.2.17
version/linux linux kernel/2.4.6
version/linux linux kernel/2.2.9

CVE-2002-1976

Remedy

Never miss a vulnerability like this again

Reference Links

Company

Resources

Contact