Vulnerabilities > CVE-2002-0339 - Unspecified vulnerability in Cisco IOS
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN cisco
nessus
Summary
Cisco IOS 11.1CC through 12.2 with Cisco Express Forwarding (CEF) enabled includes portions of previous packets in the padding of a MAC level packet when the MAC packet's length is less than the IP level packet length.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 10 |
Nessus
NASL family CISCO NASL id CISCO-SA-20020227-IOS-CEFHTTP.NASL description Excluding Cisco 12000 Series Internet Routers, all Cisco devices running Cisco IOS software that have Cisco Express Forwarding (CEF) enabled can leak information from previous packets that have been handled by the device. This can happen if the packet length described in the IP header is bigger than the physical packet size. Packets like these will be expanded to fit the IP length and, during that expansion, an information leak may occur. Please note that an attacker can only collect parts of some packets but not the whole session. No other Cisco product is vulnerable. Devices that have fast switching enabled are not affected by this vulnerability. Cisco 12000 Series Internet Routers are not affected by this vulnerability. The workaround for this vulnerability is to disable CEF. last seen 2020-03-17 modified 2010-09-01 plugin id 48964 published 2010-09-01 reporter This script is (C) 2010-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/48964 title Data Leak with Cisco Express Forwarding Enabled - Cisco Systems NASL family CISCO NASL id CSCDU20643.NASL description If the remote device has Cisco Express Forwarding (CEF) enabled, it may leak information from previous packets that have been handled by the device. An attacker may use this flaw to sniff your network remotely. This vulnerability is documented as Cisco Bug ID CSCdu20643. last seen 2020-03-28 modified 2002-06-05 plugin id 10983 published 2002-06-05 reporter This script is Copyright (C) 2002-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/10983 title Cisco IOS Cisco Express Forwarding (CEF) Previous Packet Information Disclosure (CSCdu20643)
References
- http://www.cisco.com/warp/public/707/IOS-CEF-pub.shtml
- http://www.cisco.com/warp/public/707/IOS-CEF-pub.shtml
- http://www.iss.net/security_center/static/8296.php
- http://www.iss.net/security_center/static/8296.php
- http://www.kb.cert.org/vuls/id/310387
- http://www.kb.cert.org/vuls/id/310387
- http://www.osvdb.org/806
- http://www.osvdb.org/806
- http://www.securityfocus.com/bid/4191
- http://www.securityfocus.com/bid/4191