Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-1022

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2000-1022
Last Modified 05 Sep 2008 04:22:27
Published 11 Dec 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-1022

Summary

The mailguard feature in Cisco Secure PIX Firewall 5.2(2) and earlier does not properly restrict access to SMTP commands, which allows remote attackers to execute restricted commands by sending a DATA command before sending the restricted commands.

Vulnerable Systems

Operating System

  • Cisco Pix Firewall 4.2%281%29

  • Cisco Pix Firewall 4.2%282%29

  • Cisco Pix Firewall 4.2%285%29

  • Cisco Pix Firewall 4.3

  • Cisco Pix Firewall 4.4%284%29

  • Cisco Pix Firewall 5.0

  • Cisco Pix Firewall 5.1

  • Cisco Pix Firewall 5.2


References

XF - cisco-pix-smtp-filtering

BID - 1698

CISCO - 20001005 Cisco Secure PIX Firewall Mailguard Vulnerability

BUGTRAQ - 20000920 Re: Cisco PIX Firewall (smtp content filtering hack) - Version 4.2(1) not exploitable

BUGTRAQ - 20000919 Cisco PIX Firewall (smtp content filtering hack)


Last Updated: 27 May 2016 10:35:58