CVE-2000-0315

Description

traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing attacks.

Affected products

• Debian / debian_linux2.0.34 – 2.0.34
• digital / unix4.0 – 4.0
• NetBSD / netbsd1.3.3
• RedHat / linux2.0.34 – 2.0.34
• slackware / slackware_linux2.0.34 – 2.0.34

References

• MISChttp://www.osvdb.org/7575
• MAILING_LISThttp://marc.info/?l=bugtraq&m=91893782027835&w=2
• VENDOR_ADVISORYftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA1999-004.txt.asc