Ipfilter

ipfilter

Vendor: Darren Reed • 5 CVEs

CVEs (5)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2009-1476 1Darren Reed 1Ipfilter Apr 23, 2026 May 26, 2009 N/A· v4 N/A· v3 7.2 HIGH· v2 Buffer overflow in lib/load_http.c in ippool in Darren Reed IPFilter (aka IP Filter) 4.1.31 allows local users to gain privileges via vectors involving a long hostname in a URL.
CVE-2002-1978 1Darren Reed 1Ipfilter Apr 16, 2026 Dec 31, 2002 N/A· v4 N/A· v3 7.5 HIGH· v2 IPFilter 3.1.1 through 3.4.28 allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that contains the string, ca...Show more IPFilter 3.1.1 through 3.4.28 allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that contains the string, causing IPFilter to treat the response as if it were a legitimate PASV command from the server.Show less
CVE-2001-0402 3Darren Reed FreebsdOpenbsd 3Freebsd IpfilterOpenbsd Apr 16, 2026 Jun 18, 2001 N/A· v4 N/A· v3 7.5 HIGH· v2 IPFilter 3.4.16 and earlier does not include sufficient session information in its cache, which allows remote attackers to bypass access restrictions by sending fragmented packets to a restricted port after sending unfra...Show more IPFilter 3.4.16 and earlier does not include sufficient session information in its cache, which allows remote attackers to bypass access restrictions by sending fragmented packets to a restricted port after sending unfragmented packets to an unrestricted port.Show less
CVE-2000-0553 1Darren Reed 1Ipfilter Apr 16, 2026 May 26, 2000 N/A· v4 N/A· v3 2.6 LOW· v2 Race condition in IPFilter firewall 3.4.3 and earlier, when configured with overlapping "return-rst" and "keep state" rules, allows remote attackers to bypass access restrictions.
CVE-1999-1244 1Darren Reed 1Ipfilter Apr 16, 2026 Apr 15, 1999 N/A· v4 N/A· v3 7.2 HIGH· v2 IPFilter 3.2.3 through 3.2.10 allows local users to modify arbitrary files via a symlink attack on the saved output file.