CVE-2000-1022

Exploit

EPSS 7.18%
Veröffentlicht 11.12.2000 05:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

The mailguard feature in Cisco Secure PIX Firewall 5.2(2) and earlier does not properly restrict access to SMTP commands, which allows remote attackers to execute restricted commands by sending a DATA command before sending the restricted commands.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Cisco ≫ Pix Firewall Software Version4.3

Cisco ≫ Pix Firewall Software Version5.0

Cisco ≫ Pix Firewall Software Version5.1

Cisco ≫ Pix Firewall Software Version5.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	7.18%	0.907

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://archives.neohapsis.com/archives/bugtraq/2000-09/0222.html

http://archives.neohapsis.com/archives/bugtraq/2000-09/0241.html

http://www.cisco.com/warp/public/707/PIXfirewallSMTPfilter-pub.shtml

http://www.securityfocus.com/bid/1698

Patch

Vendor Advisory

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/5277

https://nvd.nist.gov/vuln/detail/CVE-2000-1022

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2000-1022

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2000-1022

EUVD