← CVECheck
HomeVulnerabilities

CVE-2001-1387 — LOW severity vulnerability (iptables-save in iptables before 1.2.4 records the "--reject)

iptables-save in iptables before 1.2.4 records the "--reject-with icmp-host-prohibited" rule as "--reject-with tcp-reset," which causes iptables to generate different responses than specified by the administrator, possibly leading to an information leak.

CVE IDCVE-2001-1387
SeverityLOW
CVSS score2.1
CVSS vectorAV:L/AC:L/Au:N/C:P/I:N/A:N
CWECWE-203
StatusModified
Published2001-11-05
Last modified2026-04-16
Descriptioniptables-save in iptables before 1.2.4 records the "--reject-with icmp-host-prohibited" rule as "--reject-with tcp-reset," which causes iptables to generate different responses than specified by the administrator, possibly leading to an information leak.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →