NVD

Id
10987  
Name
CVE-2011-4600  
Description
The networkReloadIptablesRules function in network/bridge_driver.c in libvirt before 0.9.9 does not properly handle firewall rules on bridge networks when libvirtd is restarted, which might allow remote attackers to bypass intended access restrictions via a (1) DNS or (2) DHCP query.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2016-04-14  
Modified Date
2016-04-18  
Seq
2011-4600  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
61304 10987 CVE-2011-4600 http://libvirt.org/git/?p=libvirt.git;a=commitdiff;h=ae1232b298323dd7bef909426e2ebafa6bca9157  View
61305 10987 CVE-2011-4600 http://libvirt.org/news-2012.html  View
61306 10987 CVE-2011-4600 USN-2867-1  View
61307 10987 CVE-2011-4600 https://bugzilla.redhat.com/show_bug.cgi?id=760442  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
35152 JVNDB-2011-005394 libvirt の network/bridge_driver.c の networkReloadIptablesRules 関数におけるアクセス制限を回避される脆弱性 libvirt の network/bridge_driver.c の networkReloadIptablesRules 関数は、libvirtd がリスタートされる際に、ブリッジネットワーク上のファイアウォールのルールを適切に処理しないため、アクセス制限を回避される脆弱性が存在します。 CVE-2011-4600 52507 CVE-2011-4600 10987 4.3 5.9 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-005394.html 2011-12-10 2016-04-20 View