CVE-2000-1022
0
5
10
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Link copied!
Description
The mailguard feature in Cisco Secure PIX Firewall 5.2(2) and earlier does not properly restrict access to SMTP commands, which allows remote attackers to execute restricted commands by sending a DATA command before sending the restricted commands.
CVSS Vector Details
Attack Vector
Network
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Affected Software Configurations
- o cisco pix_firewall_software 4.2\(1\) * * * * * * *
- o cisco pix_firewall_software 4.2\(2\) * * * * * * *
- o cisco pix_firewall_software 4.2\(5\) * * * * * * *
- o cisco pix_firewall_software 4.3 * * * * * * *
- o cisco pix_firewall_software 4.4\(4\) * * * * * * *
- o cisco pix_firewall_software 5.0 * * * * * * *
- o cisco pix_firewall_software 5.1 * * * * * * *
- o cisco pix_firewall_software 5.2 * * * * * * *
Weaknesses (CWE)
- NVD-CWE-Other
References & External Links
- http://archives.neohapsis.com/archives/bugtraq/2000-09/0222.html
- http://archives.neohapsis.com/archives/bugtraq/2000-09/0241.html
- http://www.cisco.com/warp/public/707/PIXfirewallSMTPfilter-pub.shtml
- http://www.securityfocus.com/bid/1698
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5277
- http://archives.neohapsis.com/archives/bugtraq/2000-09/0222.html
- http://archives.neohapsis.com/archives/bugtraq/2000-09/0241.html
- http://www.cisco.com/warp/public/707/PIXfirewallSMTPfilter-pub.shtml
- http://www.securityfocus.com/bid/1698
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5277