CVE-2001-0866
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
06/12/2001
Last modified:
03/04/2025
Description
Cisco 12000 with IOS 12.0 and lines card based on Engine 2 does not properly handle an outbound ACL when an input ACL is not configured on all the interfaces of a multi port line card, which could allow remote attackers to bypass the intended access controls.
Impact
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:h:cisco:12000_router:*:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://www.ciac.org/ciac/bulletins/m-018.shtml
- http://www.cisco.com/warp/public/707/GSR-ACL-pub.shtml
- http://www.iss.net/security_center/static/7554.php
- http://www.osvdb.org/1984
- http://www.securityfocus.com/bid/3537
- http://www.ciac.org/ciac/bulletins/m-018.shtml
- http://www.cisco.com/warp/public/707/GSR-ACL-pub.shtml
- http://www.iss.net/security_center/static/7554.php
- http://www.osvdb.org/1984
- http://www.securityfocus.com/bid/3537