Cisco: >> Pix Firewall Security Vulnerabilities
The encryption algorithms for enable and passwd commands on Cisco PIX Firewall can be executed quickly due to a limited number of rounds, which make it easier for an attacker to decrypt the passwords using brute force techniques.
CVSS Score
7.5
EPSS Score
0.003
Published
2002-10-04
Cisco Secure PIX Firewall does not properly identify forged TCP Reset (RST) packets, which allows remote attackers to force the firewall to close legitimate connections.
CVSS Score
5.0
EPSS Score
0.179
Published
2000-03-20
By design, the "established" command on the Cisco PIX firewall allows connections from one host to arbitrary ports of a target host if an alternative conduit has already been allowed, which can cause administrators to configure less restrictive access controls than intended if they do not understand this functionality.
CVSS Score
7.5
EPSS Score
0.017
Published
1998-07-15
Page 2