CVE-1999-1466

Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used on certain interfaces, the IP route cache is enabled, and the access list uses the "established" keyword.

Score7.5
Access VectorNETWORK
Access ComplexityLOW
AuthenticationNONE
Confidentiality ImpactPARTIAL
Integrity ImpactPARTIAL
Availability ImpactPARTIAL
Published1992-12-10 12:00:00.000-05
Last Modified2008-09-05 04:19:35.000-04

Vulnerable Software List

VendorProductVersions
Cisco Ios 8.2, 8.3, 9.0, 9.1

References

SourceLink
CERTCA-1992-20
BID53