Intrusion Prevention

Linux.Kernel.Netfilter.iptablesrestore.Stack.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Buffer Overflow Vulnerability in Linux Kernel Netfilter iptables.
A remote, unauthenticated attacker could exploit this vulnerability by sending a specially crafted packet to the vulnerable service. Successful exploitation could cause a denial-of-service condition or arbitrary code execution in the security context of the iptables user.

Affected Products

Netfilter iptables 1.8.2

Impact

System Compromise: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://git.netfilter.org/iptables/

CVE References

CVE-2019-11360