Unrated severityNVD Advisory· Published Dec 6, 2001· Updated Apr 16, 2026

CVE-2001-0864

Description

Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "deny ip any any" rule in an outgoing ACL when the ACL contains exactly 448 entries, which can allow some outgoing packets to bypass access restrictions.

Affected products

Cisco Systems, Inc./12000 Router
cpe:2.3:h:cisco:12000_router:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cisco.com/warp/public/707/GSR-ACL-pub.shtmlnvdPatchVendor Advisory
www.ciac.org/ciac/bulletins/m-018.shtmlnvd
www.osvdb.org/1986nvd
www.securityfocus.com/bid/3536nvd
exchange.xforce.ibmcloud.com/vulnerabilities/7553nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000