Access Control List Vulnerability in Cisco 12000 Series Routers
CVE-2001-0864

Currently unrated

Key Information:

Vendor: Cisco
Status: 12000 Router
Vendor: CVE Published:; 6 December 2001

Summary

The Cisco 12000 routers running IOS 12.0 are susceptible to a configuration error in Access Control Lists (ACLs). Specifically, when an ACL contains exactly 448 entries, the implicit 'deny ip any any' rule may not function as intended. This flaw permits certain outgoing packets to bypass the established access restrictions, potentially exposing the network to unauthorized data transmissions and security risks.

References

http://www.ciac.org/ciac/bulletins/m-018.shtml

third-party-advisorygovernment-resourcex_refsource_CIAC

http://www.cisco.com/warp/public/707/GSR-ACL-pub.shtml

vendor-advisoryx_refsource_CISCO

http://www.osvdb.org/1986

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Dec 6, 2001
Vulnerability Reserved
Nov 22, 2001