Cisco 12000 with IOS 12.0 and Engine 2-based Line Cards Fragment Filtering Bypass Vulnerability

Cisco 12000 with IOS 12.0 and Engine 2-based Line Cards Fragment Filtering Bypass Vulnerability

CVE-2001-0867 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly filter does not properly filter packet fragments even when the "fragment" keyword is used in an ACL, which allows remote attackers to bypass the intended access controls.

Learn more about our Cis Benchmark Audit For Apple Ios.