Improper Removal of Sensitive Information Before Storage or Transfer

CVE-2002-0704

High

7.5/10

Summary

The Network Address Translation (NAT) capability for Netfilter ("iptables") 1.2.6a and earlier leaks translated IP addresses in ICMP error messages.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: NONE

CWE-212 - Improper Removal of Sensitive Information Before Storage or Transfer

The product stores, transfers, or shares a resource that contains sensitive information, but it does not properly remove that information before the product makes the resource available to unauthorized actors.

References

Advisory Timeline

Published Jul 26, 2002

Improper Removal of Sensitive Information Before Storage or Transfer

CVE-2002-0704

Summary

CWE-212 - Improper Removal of Sensitive Information Before Storage or Transfer

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS