Unrated severityNVD Advisory· Published Mar 26, 2001· Updated Apr 16, 2026
CVE-2001-0183
CVE-2001-0183
Description
ipfw and ip6fw in FreeBSD 4.2 and earlier allows remote attackers to bypass access restrictions by setting the ECE flag in a TCP packet, which makes the packet appear to be part of an established connection.
Affected products
11cpe:2.3:o:freebsd:freebsd:3.0:*:*:*:*:*:*:*+ 10 more
- cpe:2.3:o:freebsd:freebsd:3.0:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:3.1:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:3.3:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:3.4:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:3.5:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:3.5.1:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:4.0:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:4.0:alpha:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:4.1:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:4.1.1:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:4.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:08.ipfw.ascnvdPatchVendor Advisory
- www.securityfocus.com/bid/2293nvdExploitPatchVendor Advisory
- www.ciac.org/ciac/bulletins/l-029.shtmlnvd
- www.osvdb.org/1743nvd
- www.security-express.com/archives/bugtraq/2001-01/0424.htmlnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/5998nvd
News mentions
0No linked articles in our index yet.