Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2322

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2006-2322
Last Modified 07 Mar 2011 09:35:57
Published 11 May 2006 08:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2322

Summary

The transparent proxy feature of the Cisco Application Velocity System (AVS) 3110 5.0 and 4.0 and earlier, and 3120 5.0.0 and earlier, has a default configuration that allows remote attackers to proxy arbitrary TCP connections, aka Bug ID CSCsd32143.

Vulnerable Systems


References

CISCO - 20060510 AVS TCP Relay Vulnerability

VUPEN - ADV-2006-1762

BID - 17937

XF - cisco-avs-unauth-tcp-relay(26351)

OSVDB - 25459

SECTRACK - 1016056

SECUNIA - 20079


Last Updated: 27 May 2016 10:42:25