CVE-2004-0986

Iptables before 1.2.11, under certain conditions, does not properly load the required modules at system startup, which causes the firewall rules to fail to load and protect the system from remote attackers.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://rpmfind.net/linux/RPM/suse/updates/9.2/i386/rpm/i586/iptables-1.2.11-4.2.i586.html
http://www.ciac.org/ciac/bulletins/p-026.shtml
http://www.debian.org/security/2004/dsa-580
http://www.mandriva.com/security/advisories?name=MDKSA-2004:125
http://www.securityfocus.com/bid/11570	Patch Vendor Advisory
https://bugzilla.fedora.us/show_bug.cgi?id=2252
https://exchange.xforce.ibmcloud.com/vulnerabilities/17928
https://www.ubuntu.com/usn/usn-81-1/
http://rpmfind.net/linux/RPM/suse/updates/9.2/i386/rpm/i586/iptables-1.2.11-4.2.i586.html
http://www.ciac.org/ciac/bulletins/p-026.shtml
http://www.debian.org/security/2004/dsa-580
http://www.mandriva.com/security/advisories?name=MDKSA-2004:125
http://www.securityfocus.com/bid/11570	Patch Vendor Advisory
https://bugzilla.fedora.us/show_bug.cgi?id=2252
https://exchange.xforce.ibmcloud.com/vulnerabilities/17928
https://www.ubuntu.com/usn/usn-81-1/

Configurations

Configuration 1 (hide)

cpe:2.3:a:suse:suse_iptables:1.2.11:*:*:*:*:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:o:debian:debian_linux:3.0:::::::*
	cpe:2.3:o:debian:debian_linux:3.0::alpha:::::
	cpe:2.3:o:debian:debian_linux:3.0::arm:::::
	cpe:2.3:o:debian:debian_linux:3.0::hppa:::::
	cpe:2.3:o:debian:debian_linux:3.0::ia-32:::::
	cpe:2.3:o:debian:debian_linux:3.0::ia-64:::::
	cpe:2.3:o:debian:debian_linux:3.0::m68k:::::
	cpe:2.3:o:debian:debian_linux:3.0::mips:::::
	cpe:2.3:o:debian:debian_linux:3.0::mipsel:::::
	cpe:2.3:o:debian:debian_linux:3.0::ppc:::::
	cpe:2.3:o:debian:debian_linux:3.0::s-390:::::
	cpe:2.3:o:debian:debian_linux:3.0::sparc:::::
	cpe:2.3:o:linux:linux_kernel:2.0.2:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.0:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.1:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.2:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.3:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.4:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.5:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.6:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.7:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.8:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.9:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.10:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.11:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.12:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.13:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.14:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.15:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.16:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.17:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.18:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.19:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.20:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.21:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.22:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.23:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.24:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.25:::::::*
	cpe:2.3:o:linux:linux_kernel:2.4.26:::::::*
	cpe:2.3:o:linux:linux_kernel:2.6.0:::::::*
	cpe:2.3:o:linux:linux_kernel:2.6.1:::::::*
	cpe:2.3:o:linux:linux_kernel:2.6.2:::::::*
	cpe:2.3:o:linux:linux_kernel:2.6.3:::::::*
	cpe:2.3:o:linux:linux_kernel:2.6.4:::::::*
	cpe:2.3:o:linux:linux_kernel:2.6.5:::::::*
	cpe:2.3:o:linux:linux_kernel:2.6.6:::::::*
	cpe:2.3:o:linux:linux_kernel:2.6.7:::::::*
	cpe:2.3:o:linux:linux_kernel:2.6.8:::::::*
	cpe:2.3:o:linux:linux_kernel:2.6.9:2.6.20::::::
	cpe:2.3:o:redhat:fedora_core:core_3.0:::::::*

History

20 Nov 2024, 23:49

Type	Values Removed	Values Added
References	~~() http://rpmfind.net/linux/RPM/suse/updates/9.2/i386/rpm/i586/iptables-1.2.11-4.2.i586.html -~~	() http://rpmfind.net/linux/RPM/suse/updates/9.2/i386/rpm/i586/iptables-1.2.11-4.2.i586.html -
References	~~() http://www.ciac.org/ciac/bulletins/p-026.shtml -~~	() http://www.ciac.org/ciac/bulletins/p-026.shtml -
References	~~() http://www.debian.org/security/2004/dsa-580 -~~	() http://www.debian.org/security/2004/dsa-580 -
References	~~() http://www.mandriva.com/security/advisories?name=MDKSA-2004:125 -~~	() http://www.mandriva.com/security/advisories?name=MDKSA-2004:125 -
References	~~() http://www.securityfocus.com/bid/11570 - Patch, Vendor Advisory~~	() http://www.securityfocus.com/bid/11570 - Patch, Vendor Advisory
References	~~() https://bugzilla.fedora.us/show_bug.cgi?id=2252 -~~	() https://bugzilla.fedora.us/show_bug.cgi?id=2252 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/17928 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/17928 -
References	~~() https://www.ubuntu.com/usn/usn-81-1/ -~~	() https://www.ubuntu.com/usn/usn-81-1/ -

Information

Published : 2005-03-01 05:00

Updated : 2025-04-03 01:03

NVD link : CVE-2004-0986

Mitre link : CVE-2004-0986

CVE.ORG link : CVE-2004-0986

JSON object : View

Products Affected

debian

debian_linux

redhat

fedora_core

linux

linux_kernel

suse

suse_iptables

CWE

NVD-CWE-Other

{"id": "CVE-2004-0986", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2005-03-01T05:00:00.000", "references": [{"url": "http://rpmfind.net/linux/RPM/suse/updates/9.2/i386/rpm/i586/iptables-1.2.11-4.2.i586.html", "source": "cve@mitre.org"}, {"url": "http://www.ciac.org/ciac/bulletins/p-026.shtml", "source": "cve@mitre.org"}, {"url": "http://www.debian.org/security/2004/dsa-580", "source": "cve@mitre.org"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:125", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/11570", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://bugzilla.fedora.us/show_bug.cgi?id=2252", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17928", "source": "cve@mitre.org"}, {"url": "https://www.ubuntu.com/usn/usn-81-1/", "source": "cve@mitre.org"}, {"url": "http://rpmfind.net/linux/RPM/suse/updates/9.2/i386/rpm/i586/iptables-1.2.11-4.2.i586.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.ciac.org/ciac/bulletins/p-026.shtml", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.debian.org/security/2004/dsa-580", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:125", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/11570", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://bugzilla.fedora.us/show_bug.cgi?id=2252", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17928", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.ubuntu.com/usn/usn-81-1/", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Iptables before 1.2.11, under certain conditions, does not properly load the required modules at system startup, which causes the firewall rules to fail to load and protect the system from remote attackers."}], "lastModified": "2025-04-03T01:03:51.193", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:suse:suse_iptables:1.2.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7377733D-3EA6-421F-A82A-6CB6BDD84357"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CAE037F-111C-4A76-8FFE-716B74D65EF3"}, {"criteria": "cpe:2.3:o:debian:debian_linux:3.0:*:alpha:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A6B060E4-B5A6-4469-828E-211C52542547"}, {"criteria": "cpe:2.3:o:debian:debian_linux:3.0:*:arm:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "974C3541-990C-4CD4-A05A-38FA74A84632"}, {"criteria": "cpe:2.3:o:debian:debian_linux:3.0:*:hppa:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6CBF1E0F-C7F3-4F83-9E60-6E63FA7D2775"}, {"criteria": "cpe:2.3:o:debian:debian_linux:3.0:*:ia-32:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "58792F77-B06F-4780-BA25-FE1EE6C3FDD9"}, {"criteria": "cpe:2.3:o:debian:debian_linux:3.0:*:ia-64:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9419322-572F-4BB6-8416-C5E96541CF33"}, {"criteria": "cpe:2.3:o:debian:debian_linux:3.0:*:m68k:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BFC50555-C084-46A3-9C9F-949C5E3BB448"}, {"criteria": "cpe:2.3:o:debian:debian_linux:3.0:*:mips:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9C25D6E1-D283-4CEA-B47B-60C47A5C0797"}, {"criteria": "cpe:2.3:o:debian:debian_linux:3.0:*:mipsel:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD18A446-C634-417E-86AC-B19B6DDDC856"}, {"criteria": "cpe:2.3:o:debian:debian_linux:3.0:*:ppc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4BB852E-61B2-4842-989F-C6C0C901A8D7"}, {"criteria": "cpe:2.3:o:debian:debian_linux:3.0:*:s-390:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24DD9D59-E2A2-4116-A887-39E8CC2004FC"}, {"criteria": "cpe:2.3:o:debian:debian_linux:3.0:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F28D7457-607E-4E0C-909A-413F91CFCD82"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B988FF88-E782-4581-9E24-CDE7E1734258"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C24A129D-2E5E-436C-95DE-AE75D2E8D092"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55B85D5B-4EA1-4FCF-8D50-9C54E8FDA92F"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "01408EC0-9C2D-4A44-8080-D7FC7E1A1FA1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F49A384-7222-41F3-9BE1-4E18C00E50A6"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "05520FE3-C48D-42E8-BC24-C2396BD46CBA"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D865FBB6-E07D-492F-A75E-168B06C8ADEE"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "598F24C2-0366-4799-865C-5EE4572B734B"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0399660-6385-45AB-9785-E504D8788146"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCBC50EA-130C-41B7-83EA-C523B3C3AAD7"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B91F6CBE-400F-4D0B-B893-34577B47A342"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1548ECFD-FCB5-4AE0-9788-42F61F25489F"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6ABB9787-5497-4BDC-8952-F99CF60A89BD"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "615F6BA2-CD51-4159-B28A-A018CA9FC25C"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "093848CB-68A1-4258-8357-373A477FE4E2"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E275F440-A427-465F-B314-BF0730C781DB"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "98651D39-60CF-409F-8276-DBBB56B972AA"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "067B8E09-C923-4DDA-92DB-4A2892CB526A"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9EBE3738-E530-4EC6-9FC6-1A063605BE05"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "474384F1-FB2D-4C00-A4CD-0C2C5AE42DB4"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F677E992-8D37-438F-97DF-9D98B28F020C"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "476687F9-722B-490C-BD0B-B5F2CD7891DC"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A399D94B-D08D-4454-A07A-6634C9AE612F"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9336ABDF-9928-49F6-BAA7-D6E9829F9B1F"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB45C3B2-0F5D-4AE2-AE00-E1D6501E8D92"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.24:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "040991B8-FB4B-480B-B53B-AA7A884F9F19"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.25:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "59688C40-C92F-431E-ADD7-6782622862D3"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.26:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D813900D-DCF3-4F5D-9D90-13EDE2CBB3DA"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "142BCD48-8387-4D0C-A052-44DD4144CBFF"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E8220D81-9065-471F-9256-CFE7B9941555"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EB445E3E-CCBD-4737-BE30-841B9A79D558"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F5301E27-8021-467C-A9A2-AF2137EF0299"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "79787868-2D77-4B55-AD61-C2B357CCE047"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B3F27D3-8F1D-4576-A584-1E2059CC67B1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB5D260C-AE1C-47E9-A88C-B9C2B4349249"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA9958C6-AB7D-4B67-9AA7-42B628CBC391"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C16E3D04-EC66-41FD-9CFA-FE0C21952CAB"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.9:2.6.20:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1FC53528-A67F-42DF-B8DA-778A65893F9D"}, {"criteria": "cpe:2.3:o:redhat:fedora_core:core_3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC80CF67-C51D-442C-9526-CFEDE84A6304"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}

7.5 /10