Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0864


Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0864
Last Modified 05 Sep 2008 04:25:06
Published 06 Dec 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "deny ip any any" rule in an outgoing ACL when the ACL contains exactly 448 entries, which can allow some outgoing packets to bypass access restrictions.

Vulnerable Systems


CISCO - 20011114 Multiple Vulnerabilities in Access Control List Implementation for Cisco 12000 Series Internet Router

XF - cisco-acl-deny-ip(7553)

BID - 3536

OSVDB - 1986

CIAC - M-018

Last Updated: 27 May 2016 10:36:26