Unrated severityNVD Advisory· Published Nov 15, 2001· Updated Apr 16, 2026

CVE-2001-0895

Description

Multiple Cisco networking products allow remote attackers to cause a denial of service on the local network via a series of ARP packets sent to the router's interface that contains a different MAC address for the router, which eventually causes the router to overwrite the MAC address in its ARP table.

Affected products

Cisco Systems, Inc./Catalyst 2900xl
cpe:2.3:h:cisco:catalyst_2900xl:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Catalyst 2948g L3
cpe:2.3:h:cisco:catalyst_2948g-l3:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Catalyst 2950
cpe:2.3:h:cisco:catalyst_2950:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Catalyst 3500xl
cpe:2.3:h:cisco:catalyst_3500xl:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Catalyst 3550
cpe:2.3:h:cisco:catalyst_3550:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Catalyst 4000
cpe:2.3:h:cisco:catalyst_4000:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Catalyst 4908g L3
cpe:2.3:h:cisco:catalyst_4908g-l3:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Catalyst 5000
cpe:2.3:h:cisco:catalyst_5000:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Catalyst 6000
cpe:2.3:h:cisco:catalyst_6000:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Catalyst 8500
cpe:2.3:h:cisco:catalyst_8500:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Distributed Director
cpe:2.3:h:cisco:distributed_director:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cisco.com/warp/public/707/IOS-arp-overwrite-vuln-pub.shtmlnvdPatchVendor Advisory
www.kb.cert.org/vuls/id/399355nvdUS Government Resource
www.osvdb.org/807nvd
www.securityfocus.com/bid/3547nvd
exchange.xforce.ibmcloud.com/vulnerabilities/7547nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000