The vulnerability exists because the affected device fails to inspect and match certain traffic that meets the criteria defined in ACL rules configured for the device. An attacker could exploit this vulnerability by sending crafted HTTP packets to an affected device. A successful exploit could allow the attacker to bypass certain sets of rules defined in ACLs for the affected device.
There are no workarounds that address this vulnerability.
This advisory is available at the following link:
http://ift.tt/2uzB8Xl
The vulnerability exists because the affected device fails to inspect and match certain traffic that meets the criteria defined in ACL rules configured for the device. An attacker could exploit this vulnerability by sending crafted HTTP packets to an affected device. A successful exploit could allow the attacker to bypass certain sets of rules defined in ACLs for the affected device.
There are no workarounds that address this vulnerability.
This advisory is available at the following link:
http://ift.tt/2uzB8Xl
Security Impact Rating: Medium
CVE: CVE-2017-6672
from Cisco Security Advisory http://ift.tt/2uzB8Xl
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.