Inadequate Firewall Rule Handling in libvirt Network Bridge Driver

CVE-2011-4600 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

The networkReloadIptablesRules function in network/bridge_driver.c in libvirt before 0.9.9 does not properly handle firewall rules on bridge networks when libvirtd is restarted, which might allow remote attackers to bypass intended access restrictions via a (1) DNS or (2) DHCP query.

Learn more about our Network Penetration Testing.