CVE-2002-1976
Severity:
Pending analysis
Type:
Unavailable / Other
Publication date:
31/12/2002
Last modified:
05/09/2008
Description
ifconfig, when used on the Linux kernel 2.2 and later, does not report when the network interface is in promiscuous mode if it was put in promiscuous mode using PACKET_MR_PROMISC, which could allow attackers to sniff the network without detection, as demonstrated using libpcap.
Impact
Base Score 2.0
2.10
Severity 2.0
LOW
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:o:linux:linux_kernel:2.2.0:*:*:*:*:*:*:* | ||
cpe:2.3:o:linux:linux_kernel:2.2.1:*:*:*:*:*:*:* | ||
cpe:2.3:o:linux:linux_kernel:2.2.2:*:*:*:*:*:*:* | ||
cpe:2.3:o:linux:linux_kernel:2.2.3:*:*:*:*:*:*:* | ||
cpe:2.3:o:linux:linux_kernel:2.2.4:*:*:*:*:*:*:* | ||
cpe:2.3:o:linux:linux_kernel:2.2.5:*:*:*:*:*:*:* | ||
cpe:2.3:o:linux:linux_kernel:2.2.6:*:*:*:*:*:*:* | ||
cpe:2.3:o:linux:linux_kernel:2.2.7:*:*:*:*:*:*:* | ||
cpe:2.3:o:linux:linux_kernel:2.2.8:*:*:*:*:*:*:* | ||
cpe:2.3:o:linux:linux_kernel:2.2.9:*:*:*:*:*:*:* | ||
cpe:2.3:o:linux:linux_kernel:2.2.10:*:*:*:*:*:*:* | ||
cpe:2.3:o:linux:linux_kernel:2.2.11:*:*:*:*:*:*:* | ||
cpe:2.3:o:linux:linux_kernel:2.2.12:*:*:*:*:*:*:* | ||
cpe:2.3:o:linux:linux_kernel:2.2.13:*:*:*:*:*:*:* | ||
cpe:2.3:o:linux:linux_kernel:2.2.14:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page