CVE: CVE-1999-1582 - CVE-Search

CVE Details for CVE: CVE-1999-1582

Summary

By design, the "established" command on the Cisco PIX firewall allows connections from one host to arbitrary ports of a target host if an alternative conduit has already been allowed, which can cause administrators to configure less restrictive access controls than intended if they do not understand this functionality.

Timestamps
Last major update	11-07-2017 - 01:29
Published	15-07-1998 - 04:00
Last modified	11-07-2017 - 01:29

References

http://www.cisco.com/warp/public/707/pixest-pub.shtml
http://www.kb.cert.org/vuls/id/6733
https://exchange.xforce.ibmcloud.com/vulnerabilities/8052

Vulnerable Configurations

cpe:2.3:a:cisco:pix_firewall:*:*:*:*:*:*:*:*
cpe:2.3:a:cisco:pix_firewall:*:*:*:*:*:*:*:*

CAPEC

Click the CAPEC title to display a description

CWE

NVD-CWE-Other

CVSS

Base

7.5

Impact

6.4

Exploitability

10.0

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

CVSS3

None

VIA4 references

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

refmap via4

cert-vn	VU#6733
cisco	19980715 PIX Firewall "established" Command
xf	cisco-pix-established-bypass(8052)