CVE-2001-0929

Опубликовано: 28 нояб. 2001

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Cisco IOS Firewall Feature set, aka Context Based Access Control (CBAC) or Cisco Secure Integrated Software, for IOS 11.2P through 12.2T does not properly check the IP protocol type, which could allow remote attackers to bypass access control lists.

Ссылки

http://www.cisco.com/warp/public/707/IOS-cbac-dynacl-pub.shtml
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/362483
US Government Resource
http://www.osvdb.org/808
http://www.securityfocus.com/bid/3588
https://exchange.xforce.ibmcloud.com/vulnerabilities/7614
http://www.cisco.com/warp/public/707/IOS-cbac-dynacl-pub.shtml
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/362483
US Government Resource
http://www.osvdb.org/808
http://www.securityfocus.com/bid/3588
https://exchange.xforce.ibmcloud.com/vulnerabilities/7614

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:cisco:ios:11.2p:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:11.3t:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:12.0:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:12.0t:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:12.1:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:12.1e:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:12.1t:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:12.2t:*:*:*:*:*:*:*

EPSS

Процентиль: 71%

0.00682

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-c9cp-qwv7-4m5r

github

почти 4 года назад