CVE-2001-0864
Summary
| CVE | CVE-2001-0864 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2001-12-06 05:00:00 UTC |
| Updated | 2017-10-10 01:29:00 UTC |
| Description | Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "deny ip any any" rule in an outgoing ACL when the ACL contains exactly 448 entries, which can allow some outgoing packets to bypass access restrictions. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Cisco | 12000 Router | All | All | All | All |
| Hardware | Cisco | 12000 Router | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Cisco Security Advisory: Multiple vulnerabilities in Access Control List implementation for Cisco 12000 Series Internet Router | CISCO | www.cisco.com | Patch, Vendor Advisory |
| M-018 | CIAC | www.ciac.org | |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| 404 Not Found | OSVDB | www.osvdb.org | |
| Cisco 12000 Series Internet Router ACL Failure To Drop Packets Vulnerability | BID | www.securityfocus.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 317196 Cisco Internetwork Operating System (IOS) Access Control List Implementation Vulnerability (cisco-sa-20011114-gsr-acl)