CVE-1999-1582 - CVE Details

Description

By design, the "established" command on the Cisco PIX firewall allows connections from one host to arbitrary ports of a target host if an alternative conduit has already been allowed, which can cause administrators to configure less restrictive access controls than intended if they do not understand this functionality.

Severity

Overall Severity: N/A

CVSS Metrics

Type	Score	Severity	Vector

Affected Products

cisco - pix_firewall

Affected Versions:

References

http://www.cisco.com/warp/public/707/pixest-pub.shtml
http://www.kb.cert.org/vuls/id/6733
US Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/8052
http://www.cisco.com/warp/public/707/pixest-pub.shtml
http://www.kb.cert.org/vuls/id/6733
US Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/8052