PT-2012-3198 · Cisco · Cisco Carrier Routing System

Published

2012-08-06

Updated

2020-03-24

CVE-2012-1342

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Cisco Carrier Routing System (CRS) versions 3.9 through 4.1

Description The issue allows remote attackers to bypass ACL entries via fragmented packets.

Recommendations For versions 3.9 through 4.1, update to a version that includes the fix for Bug ID CSCtj10975 to prevent ACL bypass via fragmented packets.

Fix

Incorrect Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-863

Related Identifiers

CVE-2012-1342

Affected Products

Cisco Carrier Routing System

PT-2012-3198 · Cisco · Cisco Carrier Routing System

CVE-2012-1342

Weakness Enumeration

Related Identifiers

Affected Products

References · 2