CVE-2001-0864

Published: Dec 6, 2001Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "deny ip any any" rule in an outgoing ACL when the ACL contains exactly 448 entries, which can allow some outgoing packets to bypass access restrictions.

Affected (1)

Products: Cisco: 12000 Router

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Cisco 12000 Router	All versions

References (10)

http://www.ciac.org/ciac/bulletins/m-018.shtml

Source: cve@mitre.org

http://www.cisco.com/warp/public/707/GSR-ACL-pub.shtml

Source: cve@mitre.org

PatchVendor Advisory

http://www.osvdb.org/1986

Source: cve@mitre.org

http://www.securityfocus.com/bid/3536

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/7553

Source: cve@mitre.org

http://www.ciac.org/ciac/bulletins/m-018.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.cisco.com/warp/public/707/GSR-ACL-pub.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.osvdb.org/1986

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/3536

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/7553

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.