[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

256288

 
 

909

 
 

199146

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2000-1022Date: (C)2000-12-11   (M)2023-12-22


The mailguard feature in Cisco Secure PIX Firewall 5.2(2) and earlier does not properly restrict access to SMTP commands, which allows remote attackers to execute restricted commands by sending a DATA command before sending the restricted commands.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.5
Exploit Score: 10.0
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
BID-1698
http://archives.neohapsis.com/archives/bugtraq/2000-09/0222.html
http://archives.neohapsis.com/archives/bugtraq/2000-09/0241.html
http://www.cisco.com/warp/public/707/PIXfirewallSMTPfilter-pub.shtml
cisco-pix-smtp-filtering

CPE    4
cpe:/o:cisco:pix_firewall:5.0
cpe:/o:cisco:pix_firewall:5.1
cpe:/o:cisco:pix_firewall:4.3
cpe:/o:cisco:pix_firewall:5.2
...

© SecPod Technologies