Cisco IOS 12.2(33)SXJ9 on Supervisor Engine 32 and 720 modules for 6500 and 7600 devices mishandles certain operators, flags, and keywords in TCAM share ACLs, which allows remote attackers to bypass intended access restrictions by sending packets that should have been recognized by a filter, aka Bug ID CSCuy64806.
References
Configurations
History
21 Nov 2024, 02:56
Type | Values Removed | Values Added |
---|---|---|
References | () http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-catalyst - Mitigation, Vendor Advisory | |
References | () http://www.securityfocus.com/bid/93404 - | |
References | () http://www.securitytracker.com/id/1036954 - |
Information
Published : 2016-10-06 10:59
Updated : 2024-11-21 02:56
NVD link : CVE-2016-6422
Mitre link : CVE-2016-6422
CVE.ORG link : CVE-2016-6422
JSON object : View
Products Affected
cisco
- ios
CWE
CWE-20
Improper Input Validation