The connection tracking core of Netfilter for Linux 2.4.20, with CONFIG_IP_NF_CONNTRACK enabled or the ip_conntrack module loaded, allows remote attackers to cause a denial of service (resource consumption) due to an inconsistency with Linux 2.4.20's support of linked lists, which causes Netfilter to fail to identify connections with an UNCONFIRMED status and use large timeouts.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2003-08-05T04:00:00

Updated: 2024-08-08T01:43:36.063Z

Reserved: 2003-04-01T00:00:00

Link: CVE-2003-0187

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2003-08-27T04:00:00.000

Modified: 2024-11-20T23:44:10.167

Link: CVE-2003-0187

cve-icon Redhat

Severity :

Publid Date: 2003-05-14T00:00:00Z

Links: CVE-2003-0187 - Bugzilla