Published: 28/09/2009 Updated: 02/06/2022

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

The Object Groups for Access Control Lists (ACLs) feature in Cisco IOS 12.2XNB, 12.2XNC, 12.2XND, 12.4MD, 12.4T, 12.4XZ, and 12.4YA allows remote malicious users to bypass intended access restrictions via crafted requests, aka Bug IDs CSCsx07114, CSCsu70214, CSCsw47076, CSCsv48603, CSCsy54122, and CSCsu50252.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco ios 12.2xnd
cisco ios 12.4t
cisco ios 12.4ya
cisco ios 12.4xz
cisco ios 12.2xnb
cisco ios 12.4md
cisco ios 12.2xnc

A vulnerability exists in Cisco IOS® software where an unauthenticated attacker could bypass access control policies when the Object Groups for Access Control Lists (ACLs) feature is used Cisco has released software updates that address this vulnerability There are no workarounds for this vulnerability other than disabling the Object Group ...

NVD-CWE-noinfo http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8119.shtml http://tools.cisco.com/security/center/viewAlert.x?alertId=18876 http://osvdb.org/58338 http://www.securitytracker.com/id?1022933 http://www.vupen.com/english/advisories/2009/2759 http://www.securityfocus.com/bid/36495 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20090923-acl

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-2862

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect