CVE-2002-2316

2007-10-2619:00:00

mitre

www.cve.org

cisco

catalyst 4000

switches

mac address

vulnerability

unicast traffic

remote attackers

AI Score

6.2

Confidence

Low

EPSS

0.005

Percentile

77.2%

JSON

Cisco Catalyst 4000 series switches running CatOS 5.5.5, 6.3.5, and 7.1.2 do not always learn MAC addresses from a single initial packet, which causes unicast traffic to be broadcast across the switch and allows remote attackers to obtain sensitive network information by sniffing.

References

archives.neohapsis.com/archives/bugtraq/2002-05/0190.html

archives.neohapsis.com/archives/bugtraq/2002-06/0209.html

www.iss.net/security_center/static/9148.php

www.securityfocus.com/bid/4790