Published: 28/11/2001 Updated: 10/10/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Cisco IOS Firewall Feature set, aka Context Based Access Control (CBAC) or Cisco Secure Integrated Software, for IOS 11.2P up to and including 12.2T does not properly check the IP protocol type, which could allow remote malicious users to bypass access control lists.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco ios 11.3t
cisco ios 12.0
cisco ios 11.2p
cisco ios 12.2
cisco ios 12.2t
cisco ios 12.0t
cisco ios 12.1
cisco ios 12.1e
cisco ios 12.1t

The IOS Firewall Feature set, also known as Cisco Secure Integrated Software, also known as Context Based Access Control (CBAC), and introduced in IOS version 112P, has a vulnerability that permits traffic normally expected to be denied by the dynamic access control lists This vulnerability is documented as Cisco Bug ID CSCdv48261 ...

NVD-CWE-Other http://www.cisco.com/warp/public/707/IOS-cbac-dynacl-pub.shtml http://www.kb.cert.org/vuls/id/362483 http://www.securityfocus.com/bid/3588 http://www.osvdb.org/808 https://exchange.xforce.ibmcloud.com/vulnerabilities/7614 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20011128-ios-cbac-dynacl

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2001-0929

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect