Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pix firewall vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2002-0954
The encryption algorithms for enable and passwd commands on Cisco PIX Firewall can be executed quickly due to a limited number of rounds, which make it easier for an malicious user to decrypt the passwords using brute force techniques.
Cisco Pix Firewall
7.5
CVSSv2
CVE-1999-1582
By design, the "established" command on the Cisco PIX firewall allows connections from one host to arbitrary ports of a target host if an alternative conduit has already been allowed, which can cause administrators to configure less restrictive access controls than inte...
Cisco Pix Firewall
5
CVSSv2
CVE-2000-0613
Cisco Secure PIX Firewall does not properly identify forged TCP Reset (RST) packets, which allows remote malicious users to force the firewall to close legitimate connections.
Cisco Pix Firewall
1 EDB exploit
7.8
CVSSv2
CVE-2007-0962
Cisco PIX 500 and ASA 5500 Series Security Appliances 7.0 prior to 7.0(4.14) and 7.1 prior to 7.1(2.1), and the FWSM 2.x prior to 2.3(4.12) and 3.x prior to 3.1(3.24), when "inspect http" is enabled, allows remote malicious users to cause a denial of service (device reb...
Cisco Firewall Services Module 2.3
Cisco Firewall Services Module 3.1
Cisco Pix Firewall Software 7.1
Cisco Asa 5500 7.0
Cisco Asa 5500 7.1
Cisco Pix Firewall Software 7.0
5
CVSSv2
CVE-2000-1027
Cisco Secure PIX Firewall 5.2(2) allows remote malicious users to determine the real IP address of a target FTP server by flooding the server with PASV requests, which includes the real IP address in the response when passive mode is established.
Cisco Pix Firewall Software 5.2
1 EDB exploit
2.1
CVSSv2
CVE-2001-1098
Cisco PIX firewall manager (PFM) 4.3(2)g logs the enable password in plaintext in the pfm.log file, which could allow local users to obtain the password by reading the file.
Cisco Pix Firewall Manager 4.3\\(2\\)g
5
CVSSv2
CVE-2003-1004
Cisco PIX firewall 6.2.x up to and including 6.2.3, when configured as a VPN Client, allows remote malicious users to cause a denial of service (dropped IPSec tunnel connection) via an IKE Phase I negotiation request to the outside interface of the firewall.
Cisco Pix Firewall 6.2.2 .111
Cisco Pix Firewall Software 6.2
Cisco Pix Firewall Software 6.2\\(1\\)
Cisco Pix Firewall Software 6.2\\(2\\)
Cisco Pix Firewall Software 6.2\\(3\\)
Cisco Pix Firewall Software 6.2\\(3.100\\)
9
CVSSv2
CVE-2007-0960
Unspecified vulnerability in Cisco PIX 500 and ASA 5500 Series Security Appliances 7.2.2, when configured to use the LOCAL authentication method, allows remote authenticated users to gain privileges via unspecified vectors.
Cisco Pix Firewall Software 7.2\\(2\\)
Cisco Asa 5500 7.2\\(2\\)
7.8
CVSSv2
CVE-2007-0959
Cisco PIX 500 and ASA 5500 Series Security Appliances 7.2.2, when configured to inspect certain TCP-based protocols, allows remote malicious users to cause a denial of service (device reboot) via malformed TCP packets.
Cisco Asa 5500 7.2\\(2\\)
Cisco Pix Firewall Software 7.2\\(2\\)
5
CVSSv2
CVE-2005-3774
Cisco PIX 6.3 and 7.0 allows remote malicious users to cause a denial of service (blocked new connections) via spoofed TCP packets that cause the PIX to create embryonic connections that that would not produce a valid connection with the end system, including (1) SYN packets with...
Cisco Pix 6.3
Cisco Pix 7.0
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »