CVE-2001-0864

Currently unrated

Key Information:

Vendor: Cisco
Status: 12000 Router
Vendor: CVE Published:; 6 December 2001

Summary

Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "deny ip any any" rule in an outgoing ACL when the ACL contains exactly 448 entries, which can allow some outgoing packets to bypass access restrictions.

References

http://www.ciac.org/ciac/bulletins/m-018.shtml

third-party-advisorygovernment-resourcex_refsource_CIAC

http://www.cisco.com/warp/public/707/GSR-ACL-pub.shtml

vendor-advisoryx_refsource_CISCO

http://www.osvdb.org/1986

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Dec 6, 2001
Vulnerability Reserved
Nov 22, 2001