CVE-2012-2663

CVE Details

Visit the official vulnerability details page for CVE-2012-2663 to learn more.

Initial Publication

10/25/2024

Last Update

10/25/2024

Third Party Dependency

iptables

NIST CVE Summary

extensions/libxt_tcp.c in iptables through 1.4.21 does not match TCP SYN+FIN packets in --syn rules, which might allow remote attackers to bypass intended firewall restrictions via crafted packets. NOTE: the CVE-2012-6638 fix makes this issue less relevant.

CVE Severity

7.5

Our Official Summary

This is an iptables userspace issue. This CVE is superseded by CVE-2012-6638. There is no fix available for this issue in kernel stable releases and is being marked as ignored.

Status

Ongoing

Affected Products & Versions

Version	Palette Enterprise	Palette Enterprise Airgap	VerteX	VerteX Airgap
4.5.11	Impacted	Impacted	Impacted	Impacted
4.5.10	Impacted	Impacted	Impacted	Impacted
4.5.8	Impacted	Impacted	Impacted	Impacted
4.5.5	Impacted	Impacted	Impacted	Impacted
4.5.4	Impacted	Impacted	Impacted	Impacted
4.4.20	Impacted	Impacted	Impacted	Impacted

Revision History

Date	Revision
11/15/2024	Impacted versions changed from 4.5.4, 4.5.5, 4.5.8, 4.4.20, 4.5.10 to 4.5.4, 4.5.5, 4.5.8, 4.4.20, 4.5.10, 4.5.11
11/15/2024	Impacted versions changed from 4.5.4, 4.5.5, 4.5.8, 4.4.20 to 4.5.4, 4.5.5, 4.5.8, 4.4.20, 4.5.10
11/13/2024	Impacted versions changed from 4.5.4, 4.5.5, 4.5.8 to 4.5.4, 4.5.5, 4.5.8, 4.4.20
11/10/2024	Impacted versions changed from 4.5.4, 4.5.5 to 4.5.4, 4.5.5, 4.5.8
10/27/2024	Impacted versions changed from 4.5.4 to 4.5.4, 4.5.5

CVE Details​

Initial Publication​

Last Update​

Third Party Dependency​

NIST CVE Summary​

CVE Severity​

Our Official Summary​

Status​

Affected Products & Versions​

Revision History​