Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0863


Vulnerability Score 5.0 5.0
CVE Id CVE-2001-0863
Last Modified 05 Sep 2008 04:25:06
Published 06 Dec 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not handle the "fragment" keyword in a compiled ACL (Turbo ACL) for packets that are sent to the router, which allows remote attackers to cause a denial of service via a flood of fragments.

Vulnerable Systems


CISCO - 20011114 Multiple Vulnerabilities in Access Control List Implementation for Cisco 12000 Series Internet Router

XF - cisco-acl-outgoing-fragment(7551)

BID - 3539

OSVDB - 1987

CIAC - M-018

Last Updated: 27 May 2016 10:36:26