CVE List
| Id | CVE No. | Status | Description | Phase | Votes | Comments | Actions |
|---|---|---|---|---|---|---|---|
| 522 | CVE-1999-0525 | Candidate | IP traceroute is allowed from arbitrary hosts. | Proposed (19990726) | MODIFY(1) Frech | NOOP(1) Baker | REJECT(1) Northcutt | Frech> XF:traceroute | View |
| 525 | CVE-1999-0528 | Candidate | A router or firewall forwards external packets that claim to come from inside the network that the router/firewall is in front of. | Proposed (19990726) | ACCEPT(3) Baker, Meunier, Northcutt | MODIFY(1) Frech | Frech> possibly XF:nisd-dns-fwd-check | CHANGE> [Frech changed vote from REVIEWING to MODIFY] | Frech> XF:firewall-external-packet-forwarding(8372) | View |
| 526 | CVE-1999-0529 | Candidate | A router or firewall forwards packets that claim to come from IANA reserved or private addresses, e.g. 10.x.x.x, 127.x.x.x, 217.x.x.x, etc. | Proposed (19990726) | ACCEPT(1) Frech | MODIFY(2) Baker, Meunier | REJECT(1) Northcutt | Northcutt> I have seen ISPs "assign" private addresses within their domain | Meunier> A border router or firewall forwards packets that claim to come from IANA | reserved or private addresses, e.g. 10.x.x.x, 127.x.x.x, 217.x.x.x, | etc, outside of their area of validity. | CHANGE> [Frech changed vote from REVIEWING to ACCEPT] | Baker> I think the description should be modified to say they accept this type of traffic from an interface not residing on private/reserved network. | View |
| 529 | CVE-1999-0532 | Candidate | A DNS server allows zone transfers. | Proposed (19990726) | MODIFY(1) Frech | NOOP(1) Baker | REJECT(1) Northcutt | Northcutt> (With split DNS implementations this is quite appropriate) | Frech> XF:dns-zonexfer | View |
| 530 | CVE-1999-0533 | Candidate | A DNS server allows inverse queries. | Proposed (19990726) | MODIFY(1) Frech | NOOP(1) Baker | REJECT(1) Northcutt | Northcutt> (rule of thumb) | Frech> XF:dns-iquery | View |
Page 411 of 20943, showing 5 records out of 104715 total, starting on record 2051, ending on 2055
