Published: 25/06/2002 Updated: 05/09/2008

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Cisco IOS 11.1CC up to and including 12.2 with Cisco Express Forwarding (CEF) enabled includes portions of previous packets in the padding of a MAC level packet when the MAC packet's length is less than the IP level packet length.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco ios 12.1e
cisco ios 12.1t
cisco ios 12.2
cisco ios 12.2t
cisco ios 11.1cc
cisco ios 12.0
cisco ios 12.0st
cisco ios 12.1
cisco ios 12.0s
cisco ios 12.0t

Excluding Cisco 12000 Series Internet Routers, all Cisco devices running Cisco IOS® software that have Cisco Express Forwarding (CEF) enabled can leak information from previous packets that have been handled by the device This can happen if the packet length described in the IP header is bigger than the physical packet size Packets like ...

NVD-CWE-Other http://www.cisco.com/warp/public/707/IOS-CEF-pub.shtml http://www.iss.net/security_center/static/8296.php http://www.securityfocus.com/bid/4191 http://www.kb.cert.org/vuls/id/310387 http://www.osvdb.org/806 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20020227-ios-cef

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-0339

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect