Details of VAR-200206-0039

ID

VAR-200206-0039

CVE

CVE-2002-0339

TITLE

Cisco IOS discloses fragments of previous packets when Express Forwarding is enabled

Trust: 0.8

sources: CERT/CC: VU#310387

DESCRIPTION

Cisco IOS 11.1CC through 12.2 with Cisco Express Forwarding (CEF) enabled includes portions of previous packets in the padding of a MAC level packet when the MAC packet's length is less than the IP level packet length. A vulnerability exists in multiple versions of Cisco's Internetworking Operating System (IOS) software that allows an attacker to collect fragments of previously processed packets. IOS is the Internet Operating System, used on Cisco routers. It is distributed and maintained by Cisco. Under some circumstances, Cisco IOS may leak information from previously routed packets that are still in memory. The data used to pad the packet is taken from other packets previously routed that are still in the router's memory. It should be noted that this problem occurs only when Cisco Express Forwarding is enabled. Attackers cannot specify the content of the information to be obtained, which reduces the possibility of obtaining sensitive information

Trust: 1.98

sources: NVD: CVE-2002-0339 // CERT/CC: VU#310387 // BID: 4191 // VULHUB: VHN-4732

AFFECTED PRODUCTS

vendor:	cisco	model:	ios	scope:	eq	version:	12.2	Trust: 1.9
vendor:	cisco	model:	ios	scope:	eq	version:	12.1	Trust: 1.9
vendor:	cisco	model:	ios	scope:	eq	version:	12.0	Trust: 1.9
vendor:	cisco	model:	ios	scope:	eq	version:	12.0st	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.1t	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0t	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.2t	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0s	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	11.1cc	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.1e	Trust: 1.6
vendor:	cisco	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	ios 12.2t	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1t	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1e	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0t	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0st	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0s	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.1cc	scope:	-	version:	-	Trust: 0.3

sources: CERT/CC: VU#310387 // BID: 4191 // CNNVD: CNNVD-200206-066 // NVD: CVE-2002-0339

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2002-0339
value:	MEDIUM
Trust: 1.0
CARNEGIE MELLON:	VU#310387
value:	3.94
Trust: 0.8
CNNVD:	CNNVD-200206-066
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-4732
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2002-0339
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-4732
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CERT/CC: VU#310387 // VULHUB: VHN-4732 // CNNVD: CNNVD-200206-066 // NVD: CVE-2002-0339

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2002-0339

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200206-066

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200206-066

EXTERNAL IDS

db:	BID	id:	4191	Trust: 2.8
db:	CERT/CC	id:	VU#310387	Trust: 2.5
db:	NVD	id:	CVE-2002-0339	Trust: 1.7
db:	OSVDB	id:	806	Trust: 1.7
db:	CNNVD	id:	CNNVD-200206-066	Trust: 0.7
db:	CISCO	id:	20020227 CISCO SECURITY ADVISORY: DATA LEAK WITH CISCO EXPRESS FORWARDING	Trust: 0.6
db:	XF	id:	8296	Trust: 0.6
db:	VULHUB	id:	VHN-4732	Trust: 0.1

sources: CERT/CC: VU#310387 // VULHUB: VHN-4732 // BID: 4191 // CNNVD: CNNVD-200206-066 // NVD: CVE-2002-0339

REFERENCES

url:	http://www.cisco.com/warp/public/707/ios-cef-pub.shtml	Trust: 2.5
url:	http://www.securityfocus.com/bid/4191	Trust: 2.5
url:	http://www.kb.cert.org/vuls/id/310387	Trust: 1.7
url:	http://www.osvdb.org/806	Trust: 1.7
url:	http://www.iss.net/security_center/static/8296.php	Trust: 1.7

sources: CERT/CC: VU#310387 // VULHUB: VHN-4732 // CNNVD: CNNVD-200206-066 // NVD: CVE-2002-0339

CREDITS

Cisco Security Advisory

Trust: 0.6

sources: CNNVD: CNNVD-200206-066

SOURCES

db:	CERT/CC	id:	VU#310387
db:	VULHUB	id:	VHN-4732
db:	BID	id:	4191
db:	CNNVD	id:	CNNVD-200206-066
db:	NVD	id:	CVE-2002-0339

LAST UPDATE DATE

2025-04-03T22:39:09.932000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#310387	date:	2002-03-05T00:00:00
db:	VULHUB	id:	VHN-4732	date:	2008-09-05T00:00:00
db:	BID	id:	4191	date:	2002-02-27T00:00:00
db:	CNNVD	id:	CNNVD-200206-066	date:	2005-05-02T00:00:00
db:	NVD	id:	CVE-2002-0339	date:	2025-04-03T01:03:51.193

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#310387	date:	2002-03-04T00:00:00
db:	VULHUB	id:	VHN-4732	date:	2002-06-25T00:00:00
db:	BID	id:	4191	date:	2002-02-27T00:00:00
db:	CNNVD	id:	CNNVD-200206-066	date:	2002-02-27T00:00:00
db:	NVD	id:	CVE-2002-0339	date:	2002-06-25T04:00:00