CVE-2000-1027

Currently unrated

Key Information:

Vendor: Cisco
Status: Pix Firewall Software
Vendor: CVE Published:; 11 December 2000

Summary

Cisco Secure PIX Firewall 5.2(2) allows remote attackers to determine the real IP address of a target FTP server by flooding the server with PASV requests, which includes the real IP address in the response when passive mode is established.

References

http://www.securityfocus.com/bid/1877

vdb-entryx_refsource_BID

http://marc.info/?l=bugtraq&m=97059440000367&w=2

mailing-listx_refsource_BUGTRAQ

http://www.osvdb.org/1623

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Dec 11, 2000
Vulnerability Reserved
Nov 24, 2000