Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0929

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0929
Last Modified 05 Sep 2008 04:25:15
Published 28 Nov 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0929

Summary

Cisco IOS Firewall Feature set, aka Context Based Access Control (CBAC) or Cisco Secure Integrated Software, for IOS 11.2P through 12.2T does not properly check the IP protocol type, which could allow remote attackers to bypass access control lists.

Vulnerable Systems

Operating System

  • Cisco Ios 11.2p

  • Cisco Ios 11.3t

  • Cisco Ios 12.0

  • Cisco Ios 12.0t

  • Cisco Ios 12.1

  • Cisco Ios 12.1e

  • Cisco Ios 12.1t

  • Cisco Ios 12.2

  • Cisco Ios 12.2t


References

CERT-VN - VU#362483

CISCO - 20011128 A Vulnerability in IOS Firewall Feature Set

XF - ios-cbac-bypass-acl(7614)

BID - 3588

OSVDB - 808


Last Updated: 27 May 2016 10:36:27