← back
CVE-2001-0863

CVE-2001-0863

EPSS 1.7%
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not handle the "fragment" keyword in a compiled ACL (Turbo ACL) for packets that are sent to the router, which allows remote attackers to cause a denial of service via a flood of fragments.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/7551http://www.ciac.org/ciac/bulletins/m-018.shtmlhttp://www.cisco.com/warp/public/707/GSR-ACL-pub.shtmlhttp://www.osvdb.org/1987http://www.securityfocus.com/bid/3539