Back to search
CVE-2001-0864
Published: Mar 9, 2002
Modified: Aug 8, 2024
PUBLISHED
Description
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "deny ip any any" rule in an outgoing ACL when the ACL contains exactly 448 entries, which can allow some outgoing packets to bypass access restrictions.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
M-018
third-party-advisory
government-resource
x_refsource_CIAC
20011114 Multiple Vulnerabilities in Access Control List Implementation for Cisco 12000 Series Internet Router
vendor-advisory
x_refsource_CISCO
1986
vdb-entry
x_refsource_OSVDB
cisco-acl-deny-ip(7553)
vdb-entry
x_refsource_XF
3536
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now