CVE-2001-0969
FreeBSD - Unauthenticated Firewall Rule Bypass via 'me' in Point-to-Point Interface Rules
Title source: llmDescription
ipfw in FreeBSD does not properly handle the use of "me" in its rules when point to point interfaces are used, which causes ipfw to allow connections from arbitrary remote hosts.
References (4)
Core 4
Core References
Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/3206
Patch, Vendor Advisory vendor-advisory
x_refsource_freebsd
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:53.ipfw.asc
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/7002
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/1937
Scores
EPSS
0.0043
EPSS Percentile
62.8%
Details
Status
published
Products (1)
freebsd/freebsd
4.3
Published
Aug 31, 2001
Tracked Since
Feb 18, 2026