CVE-2001-0863 Information

Description

Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not handle the \fragment\ keyword in a compiled ACL (Turbo ACL) for packets that are sent to the router which allows remote attackers to cause a denial of service via a flood of fragments.

Reference

http://www.ciac.org/ciac/bulletins/m-018.shtml http://www.cisco.com/warp/public/707/GSR-ACL-pub.shtml http://www.osvdb.org/1987 http://www.securityfocus.com/bid/3539 https://exchange.xforce.ibmcloud.com/vulnerabilities/7551