CVE-2000-1027

Name of the Vulnerable Software and Affected Versions Cisco Secure PIX Firewall version 5.2(2)

Description The issue allows remote attackers to determine the real IP address of a target FTP server. This is achieved by flooding the server with PASV requests. When passive mode is established, the response includes the real IP address.

Recommendations For Cisco Secure PIX Firewall version 5.2(2), consider restricting access to the FTP server to minimize the risk of exploitation. As a temporary workaround, limit the number of PASV requests allowed to prevent IP address disclosure.