PT-1992-1009 · Cisco · Cisco Ios

Publicado

1992-12-10

Atualizado

2008-09-05

CVE-1999-1306

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 9.1 and earlier

Description The issue is related to the improper handling of extended IP access lists when the IP route cache is enabled and the "established" keyword is set. This could potentially allow attackers to bypass filters.

Recommendations For Cisco IOS versions 9.1 and earlier, consider disabling the IP route cache or removing the "established" keyword from extended IP access lists as a temporary workaround until a patch is available.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-1999-1306

Produtos afetados

Cisco Ios

PT-1992-1009 · Cisco · Cisco Ios

CVE-1999-1306

Identificadores relacionados

Produtos afetados

Referências · 2