Unicast Traffic Leakage in Cisco Catalyst 4000 Series Switches
CVE-2002-2316

Currently unrated

Key Information:

Vendor: Cisco
Status: Catos
Vendor: CVE Published:; 31 December 2002

Summary

The Cisco Catalyst 4000 series switches exhibit a vulnerability where they do not consistently learn MAC addresses from the initial packet. This flaw can lead to unicast traffic being broadcast across the network, allowing attackers to capture sensitive information by monitoring the traffic. The affected versions, CatOS 5.5.5, 6.3.5, and 7.1.2, necessitate immediate attention to mitigate potential data leakage risks.

References

http://archives.neohapsis.com/archives/bugtraq/2002-06/02...

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/4790

vdb-entryx_refsource_BID

http://www.iss.net/security_center/static/9148.php

vdb-entryx_refsource_XF

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 31, 2002