ipfw and ip6fw in FreeBSD 4.2 and earlier allows remote attackers to bypass access restrictions by setting the ECE flag in a TCP packet, which makes the packet appear to be part of an established connection.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Freebsd | Freebsd | 3.1 | 3.1 |
Freebsd | Freebsd | 3.5.1 | 3.5.1 |
Freebsd | Freebsd | 4.1 | 4.1 |
Freebsd | Freebsd | 3.0 | 3.0 |
Freebsd | Freebsd | 4.2 | 4.2 |
Freebsd | Freebsd | 3.3 | 3.3 |
Freebsd | Freebsd | 4.0 | 4.0 |
Freebsd | Freebsd | 4.1.1 | 4.1.1 |
Freebsd | Freebsd | 3.4 | 3.4 |
Freebsd | Freebsd | 3.5 | 3.5 |
Freebsd | Freebsd | 4.0 | 4.0 |