CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-1999-1582

By design, the "established" command on the Cisco PIX firewall allows connections from one host to arbitrary ports of a target host if an alternative conduit has already been allowed, which can cause administrators to configure less restrictive access controls than intended if they do not understand this functionality.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.017

EPSS Ranking 81.8%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.cisco.com/warp/public/707/pixest-pub.shtml
http://www.kb.cert.org/vuls/id/6733
https://exchange.xforce.ibmcloud.com/vulnerabilities/8052
http://www.cisco.com/warp/public/707/pixest-pub.shtml
http://www.kb.cert.org/vuls/id/6733
https://exchange.xforce.ibmcloud.com/vulnerabilities/8052

Products affected by CVE-1999-1582

Cisco » Pix Firewall » Version: N/A

cpe:2.3:a:cisco:pix_firewall:-
Cisco » Pix Firewall » Version: 6.2.2_.111

cpe:2.3:a:cisco:pix_firewall:6.2.2_.111

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-1999-1582

Products

Pricing

Contact Us