PT-1992-1009 · Cisco · Cisco Ios

Published

1992-12-10

Updated

2008-09-05

CVE-1999-1306

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 9.1 and earlier

Description The issue is related to the improper handling of extended IP access lists when the IP route cache is enabled and the "established" keyword is set. This could potentially allow attackers to bypass filters.

Recommendations For Cisco IOS versions 9.1 and earlier, consider disabling the IP route cache or removing the "established" keyword from extended IP access lists as a temporary workaround until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-1306

Affected Products

Cisco Ios

PT-1992-1009 · Cisco · Cisco Ios

CVE-1999-1306

Related Identifiers

Affected Products

References · 2