Vulnerability: Fragmented Packets Bypass Outgoing ACL on Cisco 12000 with IOS 12.0 and Engine 2 Line Cards

Vulnerability: Fragmented Packets Bypass Outgoing ACL on Cisco 12000 with IOS 12.0 and Engine 2 Line Cards

CVE-2001-0865 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not support the "fragment" keyword in an outgoing ACL, which could allow fragmented packets in violation of the intended access.

Learn more about our Cis Benchmark Audit For Apple Ios.