Back to search
CVE-2002-1978
Published: Jun 28, 2005
Modified: Aug 8, 2024
PUBLISHED
Description
IPFilter 3.1.1 through 3.4.28 allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that contains the string, causing IPFilter to treat the response as if it were a legitimate PASV command from the server.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ip-filter-bypass-firewall(10409)
vdb-entry
x_refsource_XF
6010
vdb-entry
x_refsource_BID
1005442
vdb-entry
x_refsource_SECTRACK
VU#328867
third-party-advisory
x_refsource_CERT-VN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now