CVE-2001-0866

Currently unrated

Key Information:

Vendor: Cisco
Status: 12000 Router
Vendor: CVE Published:; 6 December 2001

Summary

Cisco 12000 with IOS 12.0 and lines card based on Engine 2 does not properly handle an outbound ACL when an input ACL is not configured on all the interfaces of a multi port line card, which could allow remote attackers to bypass the intended access controls.

References

http://www.ciac.org/ciac/bulletins/m-018.shtml

third-party-advisorygovernment-resourcex_refsource_CIAC

http://www.cisco.com/warp/public/707/GSR-ACL-pub.shtml

vendor-advisoryx_refsource_CISCO

http://www.iss.net/security_center/static/7554.php

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Dec 6, 2001
Vulnerability Reserved
Nov 22, 2001