CVE-2001-0969

critical

Description

ipfw in FreeBSD does not properly handle the use of "me" in its rules when point to point interfaces are used, which causes ipfw to allow connections from arbitrary remote hosts.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/7002

http://www.securityfocus.com/bid/3206

http://www.osvdb.org/1937

Details

Source: Mitre, NVD

Published: 2001-08-31

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00432