CVSS: 7.5EPSS: 4%CPEs: 8EXPL: 2CVE-2000-1022 – Cisco PIX Firewall 4.x/5.x - SMTP Content Filtering Evasion
https://notcve.org/view.php?id=CVE-2000-1022
The mailguard feature in Cisco Secure PIX Firewall 5.2(2) and earlier does not properly restrict access to SMTP commands, which allows remote attackers to execute restricted commands by sending a DATA command before sending the restricted commands. • https://www.exploit-db.com/exploits/20231 http://archives.neohapsis.com/archives/bugtraq/2000-09/0222.html http://archives.neohapsis.com/archives/bugtraq/2000-09/0241.html http://www.cisco.com/warp/public/707/PIXfirewallSMTPfilter-pub.shtml http://www.securityfocus.com/bid/1698 https://exchange.xforce.ibmcloud.com/vulnerabilities/5277 •
CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 2CVE-2000-1027 – Cisco PIX Firewall 5.2 - PASV Mode FTP Internal Address Disclosure
https://notcve.org/view.php?id=CVE-2000-1027
Cisco Secure PIX Firewall 5.2(2) allows remote attackers to determine the real IP address of a target FTP server by flooding the server with PASV requests, which includes the real IP address in the response when passive mode is established. • https://www.exploit-db.com/exploits/20369 http://marc.info/?l=bugtraq&m=97059440000367&w=2 http://www.osvdb.org/1623 http://www.securityfocus.com/bid/1877 https://exchange.xforce.ibmcloud.com/vulnerabilities/5646 •