ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
CVSS Score
2.1
EPSS Score
0.007
Published
1997-08-01
In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could bypass filtering.
CVSS Score
7.5
EPSS Score
0.002
Published
1995-07-31
Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache is enabled and the "established" keyword is set, which could allow attackers to bypass filters.
CVSS Score
7.5
EPSS Score
0.002
Published
1992-12-10
Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used on certain interfaces, the IP route cache is enabled, and the access list uses the "established" keyword.
CVSS Score
7.5
EPSS Score
0.003
Published
1992-12-10
Page 62