CVE-2000-1022 Information

Description

The mailguard feature in Cisco Secure PIX Firewall 5.2(2) and earlier does not properly restrict access to SMTP commands which allows remote attackers to execute restricted commands by sending a DATA command before sending the restricted commands.

Reference

http://archives.neohapsis.com/archives/bugtraq/2000-09/0222.html http://archives.neohapsis.com/archives/bugtraq/2000-09/0241.html http://www.cisco.com/warp/public/707/PIXfirewallSMTPfilter-pub.shtml http://www.securityfocus.com/bid/1698 https://exchange.xforce.ibmcloud.com/vulnerabilities/5277