Back to search
CVE-2001-0863
Published: Mar 9, 2002
Modified: Aug 8, 2024
PUBLISHED
Description
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not handle the "fragment" keyword in a compiled ACL (Turbo ACL) for packets that are sent to the router, which allows remote attackers to cause a denial of service via a flood of fragments.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
M-018
third-party-advisory
government-resource
x_refsource_CIAC
20011114 Multiple Vulnerabilities in Access Control List Implementation for Cisco 12000 Series Internet Router
vendor-advisory
x_refsource_CISCO
1987
vdb-entry
x_refsource_OSVDB
cisco-acl-outgoing-fragment(7551)
vdb-entry
x_refsource_XF
3539
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now