CVE-2000-1027

Description

Cisco Secure PIX Firewall 5.2(2) allows remote attackers to determine the real IP address of a target FTP server by flooding the server with PASV requests, which includes the real IP address in the response when passive mode is established.

Affected products

• Cisco / pix_firewall_software5.2 – 5.2

References

• MISChttp://www.securityfocus.com/bid/1877
• MAILING_LISThttp://marc.info/?l=bugtraq&m=97059440000367&w=2
• MISChttp://www.osvdb.org/1623
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/5646