Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
Test ID: | 1.3.6.1.4.1.25623.1.0.10985 |
Category: | CISCO |
Title: | CSCdv48261 |
Summary: | NOSUMMARY |
Description: | Description: The IOS Firewall Feature set, also known as Cisco Secure Integrated Software, also known as Context Based Access Control (CBAC), and introduced in IOS version 11.2P, has a vulnerability that permits traffic normally expected to be denied by the dynamic access control lists. An attacker may use this flaw to break into your network even though it was explicitly denied This vulnerability is documented as Cisco Bug ID CSCdv48261. Solution : http://www.cisco.com/warp/public/707/IOS-cbac-dynacl-pub.shtml Reference : http://online.securityfocus.com/archive/1/242844 Risk factor : Critical *** As Nessus solely relied on the banner of the remote host *** this might be a false positive |
Cross-Ref: |
BugTraq ID: 3588 Common Vulnerability Exposure (CVE) ID: CVE-2001-0929 http://www.securityfocus.com/bid/3588 CERT/CC vulnerability note: VU#362483 http://www.kb.cert.org/vuls/id/362483 Cisco Security Advisory: 20011128 A Vulnerability in IOS Firewall Feature Set http://www.cisco.com/warp/public/707/IOS-cbac-dynacl-pub.shtml http://www.osvdb.org/808 XForce ISS Database: ios-cbac-bypass-acl(7614) https://exchange.xforce.ibmcloud.com/vulnerabilities/7614 |
Copyright | This script is (C) 2002 Renaud Deraison |
This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |