Description
The Network Address Translation (NAT) capability for Netfilter ("iptables") 1.2.6a and earlier leaks translated IP addresses in ICMP error messages.
References (6)
Core 6
Core References
Broken Link, Patch, Third Party Advisory, VDB Entry, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/4699
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=102088521517722&w=2
Broken Link, Patch, Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2002-086.html
Broken Link vendor-advisory
x_refsource_mandrake
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-030.php
Broken Link, Patch, Vendor Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/9043.php
Broken Link, Third Party Advisory, VDB Entry vendor-advisory
x_refsource_hp
http://online.securityfocus.com/advisories/4116
Scores
CVSS v3
7.5
EPSS
0.0324
EPSS Percentile
86.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-212
Status
published
Products (2)
linux/linux_kernel
2.4.19 pre1 (6 CPE variants)
linux/linux_kernel
2.4.4 - 2.4.18
Published
Jul 26, 2002
Tracked Since
Feb 18, 2026