CVE-2002-1978
Published Dec 31, 2002
Last updated 16 years ago
Overview
- Description
- IPFilter 3.1.1 through 3.4.28 allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that contains the string, causing IPFilter to treat the response as if it were a legitimate PASV command from the server.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-264
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "26E4A0A0-E3CC-4C42-9BCD-023A76DEB6C2"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7DDDB4A5-D4E5-4316-8986-B794C8C33E4F"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4D9BC89B-FE9D-4B42-AB21-CEB798875FB5"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D36EF6B7-D2D0-45D0-8930-FD79FA4D3869"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.1.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3B2E5FF3-518F-450D-BD75-9A4288C6E5B7"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.1.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E17D71B7-FD7F-449B-88C6-3910947B711A"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.1.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "075BB881-9210-4601-8294-50AB7249C715"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.1.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A030894F-F327-46BC-A20B-549BC2636DE5"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.1.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "12D0D5D0-9592-4D53-9BBF-5431B30FADDA"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.1.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "68315B19-7EAB-40F5-9A68-030D45B20153"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0184C1B2-0B35-484C-BDAA-145D06C28828"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3B582D8D-C784-4617-B9EF-84D8266D1F75"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B0B3CD7E-742F-43DD-9179-348D345EBCA4"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B304AA52-CA2E-4BB6-8083-DA23F5E3666B"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8651AFB6-AE6B-476E-9040-686E8D3B3E2D"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9D06BB0F-7C38-4D0F-8F1D-DDEA5BA72FA5"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DE1C3525-3BA8-4198-9932-394E77290863"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "802826A3-6CF8-4821-A186-6BE979CE536D"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ADEB76BF-F6DA-47DF-8212-85700E147D33"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FA4E6702-F0F0-42CA-A135-839C09C061E6"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "19E45505-ED50-4B82-B75E-930B358A9A43"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "19DA89AA-ADD6-4E9B-BF2F-066533A93EC3"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2E1436E9-742A-4DD9-A1E7-807083F3799E"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E48E3505-8D18-461D-B087-D92636359DC1"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C14D21A-D868-4243-9746-7E83AE69A6AF"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D8E4E90D-B36B-4EC2-996A-D2733C65F360"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3A77D625-8460-4E4E-A504-E97E37C939B3"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "19380123-9F42-4F75-8940-EE7C09612500"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.19:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5C8E384F-10C7-4FD6-B15F-1916DB9DB9F4"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D70A9AC2-F6B9-4391-8E5D-218FF1633F01"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.21:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "882D1996-8DC4-4A6B-A78E-EDEBEA160D83"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.2.22:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A8AF3B46-C364-440D-92D5-1CB4136F56EA"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FC9FA9F3-6A7F-4546-BF48-771B0105945B"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "80037D62-258E-4037-86DC-502BDDD8DB00"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1E5185D9-640C-4849-A018-C78B66CCE742"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B3E4E0B0-995B-4115-BDA5-165B44795AFC"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4CD005F7-B67B-481F-BDB3-727CC801BAA9"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "140AA53E-62B6-48C3-9074-6CEC4F6089FE"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8CA67F7C-3C37-4984-B668-C58B07C121FF"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4C67B056-B6F9-48F7-AB7F-8203EDEC0547"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "55497D90-7903-42E8-9C44-57012A8DD9EE"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A4EB3C13-9B23-489E-9784-8340629D2AE1"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8A84FC92-0567-45E3-8355-07A31F82F6EC"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5442D120-BB1A-4CBD-BD93-329B10A2EFF1"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5E33DB56-7ED3-4AC5-BDF2-E4385BCADAB7"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CF539F65-7FB4-40C2-8429-E0DA405A4D54"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5D5F9210-DD20-4D86-B4F0-74F60A263F5E"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A6763EC5-36E6-4E34-9268-F4F7EE1F3B02"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "95406641-A7DB-4B9F-9212-7DF4E0EEC578"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "34A374CF-7F47-468F-A508-A1BCCB855197"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.19:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D988022E-2F8B-4134-B5BD-B516448B5F45"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9AA7B3A1-17F5-4E63-B3EA-B81C17B20D3B"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.21:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1459DC62-C5E7-4C77-BA7C-74E6B225E129"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.3.22:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7F5BB252-A315-4835-8336-5E014545E88B"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0E5454FF-50A2-4930-B20C-F7F640B88F10"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "42F5B869-4CAD-4E68-AAF9-CBE7A833A221"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ACB9F76C-D145-4347-9A4C-1BD243AE68FB"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D5A01E8E-3D78-4BC3-9C02-CB03FA957C30"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9E1D4063-E0DC-4046-9B2A-ED845CE9A0E7"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9731E97D-9B2A-4763-9D7C-0B0294C4648E"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "32108513-D91F-4C99-8EE7-26B1D6C0C295"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5A71447D-53DF-4CA4-924C-2A7FDFE896C0"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "587AD4C8-F4B4-4E37-A477-0C29933EF47C"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2B2B3061-DA23-4242-98FF-B0C7BFA3AB57"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A72F8D32-9DA4-4EC5-A90B-D1E7D5D7AADA"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5A59E7EB-2492-4F57-B2DE-5E87BE66D361"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8E3DD0D4-1A89-40C5-8DE9-DE618DA20ED7"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D70F1AEB-6978-4F52-899C-0995FE51F779"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "59CCC790-E71E-4CCD-AAF5-D7860C8E5190"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CD56A050-563D-4FB4-9B89-BADFD62ED3B2"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5DE88E2D-FC71-47F8-9BB5-189BFC9D7365"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7BD3C01B-2C0C-4FF4-92CC-9495D26CA80C"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.19:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9822472D-99A3-48E5-A96A-5B9A2B60F0BA"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D53362DF-1BC0-4816-8C0A-E27852DD3AE8"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.21:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2A966144-3BD4-4CB8-9FDC-C4028819910E"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.22:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A6907EC5-A0D0-448B-9B67-E1EA99700A07"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.23:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8E0B777F-0870-4B2F-A809-9B232709B892"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.24:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "050439CC-D269-4AF2-96D5-3A9D4FA6D5F6"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.25:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4F24A9D1-B4C8-4216-9AD5-61572A550185"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.26:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0ADDA4F6-BCD7-45A7-B46F-132F31E06B7D"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.27:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "391EF94E-1315-4078-9404-28A426AA2687"
},
{
"criteria": "cpe:2.3:a:darren_reed:ipfilter:3.4.28:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AA6C86A1-2D96-487E-A494-FC80FC5E7857"
}
],
"operator": "OR"
}
]
}
]