Denial of Service Vulnerability in Cisco 12000 Routers
CVE-2001-0863

Currently unrated

Key Information:

Vendor: Cisco
Status: 12000 Router
Vendor: CVE Published:; 6 December 2001

Summary

A vulnerability in Cisco 12000 routers operating on IOS 12.0 affects line cards based on Engine 2. This flaw exists due to improper handling of the 'fragment' keyword in compiled Access Control Lists (ACLs). When exploited, it allows remote attackers to send a flood of fragmented packets to the router, triggering a denial of service condition. As a result, legitimate network traffic may be disrupted, affecting the overall availability of network resources.

References

http://www.ciac.org/ciac/bulletins/m-018.shtml

third-party-advisorygovernment-resourcex_refsource_CIAC

http://www.cisco.com/warp/public/707/GSR-ACL-pub.shtml

vendor-advisoryx_refsource_CISCO

http://www.osvdb.org/1987

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Dec 6, 2001
Vulnerability Reserved
Nov 22, 2001