Gnome-Lokkit Firewall Package Port Visibility Vulnerability
BID:1590
Info
Gnome-Lokkit Firewall Package Port Visibility Vulnerability
| Bugtraq ID: | 1590 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Aug 19 2000 12:00AM |
| Updated: | Aug 19 2000 12:00AM |
| Credit: | Discovered by and posted to Bugtraq on Aug 19, 2000 by Alan Cox <alan@ lxorguk.ukuu.org.uk>. |
| Vulnerable: |
Alan Cox Gnome-Lokkit 0.1 |
| Not Vulnerable: |
Alan Cox Gnome-Lokkit 0.41 |
Discussion
Gnome-Lokkit Firewall Package Port Visibility Vulnerability
There is a design error that exists in Gnome-Lokkit Firewall package. When a user is asked to make services visible to the outside world and selects no, certain ports remain open despite the configuration settings.
There is a design error that exists in Gnome-Lokkit Firewall package. When a user is asked to make services visible to the outside world and selects no, certain ports remain open despite the configuration settings.
Exploit / POC
Gnome-Lokkit Firewall Package Port Visibility Vulnerability
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Gnome-Lokkit Firewall Package Port Visibility Vulnerability
Solution:
Upgrade to Gnome-Lokkit 0.41:
Alan Cox Gnome-Lokkit 0.1
Solution:
Upgrade to Gnome-Lokkit 0.41:
Alan Cox Gnome-Lokkit 0.1
-
Alan Cox gnome-lokkit-0.41.tar.gz
ftp://ftp.linux.org.uk/pub/linux/alan/Lokkit/gnome-lokkit-0.41.tar.gz
References
Gnome-Lokkit Firewall Package Port Visibility Vulnerability
References:
References:
- Gnome-Lokkit Product Page (Alan Cox)