CVE-2001-1387
iptables < 1.2.4 - Observable Discrepancy via iptables-save Rule Mismatch
Title source: llmDescription
iptables-save in iptables before 1.2.4 records the "--reject-with icmp-host-prohibited" rule as "--reject-with tcp-reset," which causes iptables to generate different responses than specified by the administrator, possibly leading to an information leak.
References (2)
Core 2
Core References
Exploit, Issue Tracking, Third Party Advisory x_refsource_confirm
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=50500
Broken Link vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2001-144.html
Scores
EPSS
0.0040
EPSS Percentile
31.7%
Details
CWE
CWE-203
Status
published
Products (1)
netfilter/iptables
< 1.2.4
Published
Nov 05, 2001
Tracked Since
Feb 18, 2026