Vulnerability Description
Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled input interface to an output interface with a logical subinterface, as described by Cisco bug CSCdk43862.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios | <= 11.3 |
References
- http://ciac.llnl.gov/ciac/bulletins/j-016.shtmlPatchVendor Advisory
- http://www.cisco.com/warp/public/770/iosdfsacl-pub.shtmlPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1401
- http://ciac.llnl.gov/ciac/bulletins/j-016.shtmlPatchVendor Advisory
- http://www.cisco.com/warp/public/770/iosdfsacl-pub.shtmlPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1401
FAQ
What is CVE-1999-1465?
CVE-1999-1465 is a vulnerability with a CVSS score of 7.5 (HIGH). Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-en...
How severe is CVE-1999-1465?
CVE-1999-1465 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-1999-1465?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios.