Lucene search

MitreCVE-2002-2316

HistoryOct 26, 2007 - 7:00 p.m.

CVE-2002-2316

2007-10-2619:00:00

mitre

web.nvd.nist.gov

cisco

catalyst 4000

switches

mac address

vulnerability

catos

cve-2002-2316

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.6

Confidence

Low

EPSS

0.005

Percentile

77.2%

JSON

Cisco Catalyst 4000 series switches running CatOS 5.5.5, 6.3.5, and 7.1.2 do not always learn MAC addresses from a single initial packet, which causes unicast traffic to be broadcast across the switch and allows remote attackers to obtain sensitive network information by sniffing.

Affected configurations

Nvd

Node

ciscocatosMatch5.5\(5\)

ciscocatosMatch6.3\(5\)

ciscocatosMatch7.1\(2\)

VendorProductVersionCPE
ciscocatos5.5(5)cpe:2.3:o:cisco:catos:5.5\(5\):*:*:*:*:*:*:*
ciscocatos6.3(5)cpe:2.3:o:cisco:catos:6.3\(5\):*:*:*:*:*:*:*
ciscocatos7.1(2)cpe:2.3:o:cisco:catos:7.1\(2\):*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	catos	5.5(5)	cpe:2.3:o:cisco:catos:5.5\(5\):::::::*
cisco	catos	6.3(5)	cpe:2.3:o:cisco:catos:6.3\(5\):::::::*
cisco	catos	7.1(2)	cpe:2.3:o:cisco:catos:7.1\(2\):::::::*

References

archives.neohapsis.com/archives/bugtraq/2002-05/0190.html

archives.neohapsis.com/archives/bugtraq/2002-06/0209.html

www.iss.net/security_center/static/9148.php

www.securityfocus.com/bid/4790

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.6

Confidence

Low

EPSS

0.005

Percentile

77.2%

JSON

Related for CVE-2002-2316