Details of VAR-200111-0002

ID

VAR-200111-0002

CVE

CVE-2001-0895

TITLE

Cisco IOS and CatOS fail to properly validate ARP packets thereby overwriting device's MAC address in ARP table

Trust: 0.8

sources: CERT/CC: VU#399355

DESCRIPTION

Multiple Cisco networking products allow remote attackers to cause a denial of service on the local network via a series of ARP packets sent to the router's interface that contains a different MAC address for the router, which eventually causes the router to overwrite the MAC address in its ARP table. There is a denial-of-service vulnerability in specific versions of Cisco IOS or CatOS. IOS is the Internetwork Operating System, distributed by Cisco Systems. A problem in the operating system has been discovered that could lead to a user on a system local to the router denying service all network users. The problem is in the handling of multiple ARP requests. It discontinues all other ARP entries afterwards. This makes it possible for a user on a network local to the router to deny service to users on all sides of the router. This vulnerability affects the following Cisco systems: Cisco routers in the AGS/MGS/CGS/AGS+, IGS, RSM, 800, ubr900, 1000, 1400, 1500, 1600, 1700, 2500, 2600, 3000, 3600, 3800, 4000, 4500, 4700, AS5200, AS5300, AS5800, 6400, 7000, 7200, ubr7200, 7500, and 12000 series. Most recent versions of the LS1010 ATM switch. The Catalyst 6000. The Catalyst 2900XL LAN switch. The Catalyst 1900, 2800, 2900, 3000, and 5000 series LAN switches are affected. The Cisco DistributedDirector. Vulnerabilities exist in several Cisco networking products

Trust: 1.98

sources: NVD: CVE-2001-0895 // CERT/CC: VU#399355 // BID: 3547 // VULHUB: VHN-3702

AFFECTED PRODUCTS

vendor:	cisco	model:	catalyst 5000	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	catalyst 2900xl	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	catalyst 3500xl	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	catalyst 2950	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	catalyst 6000	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	catalyst 2948g-l3	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	distributed director	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	catalyst 3550	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	catalyst 4000	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	catalyst 8500	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	catalyst 4908g-l3	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	catalyst 5000	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	catalyst 4908g-l3	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	catalyst 4000	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	catalyst 2948g-l3	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	catalyst 3550	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	catalyst 8500	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	distributed director	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	catalyst 3500xl	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	catalyst 2900xl	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	catalyst 6000	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios 12.2xq	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xk	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xj	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xi	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xh	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xg	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xe	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xd	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xa	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2t	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2dd	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.2	Trust: 0.3
vendor:	cisco	model:	ios 12.1yh	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1yf	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1ye	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1yd	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1yc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1yb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1ya	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.1xx	Trust: 0.3
vendor:	cisco	model:	ios 12.1xw	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.1xv	Trust: 0.3
vendor:	cisco	model:	ios 12.1xu	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xt	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xs	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xr	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xq	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xp	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xm	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xl	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xk	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xj	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xi	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xh	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xg	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xf	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xe	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xd	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xa	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1t	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1ez	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1ey	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1ex	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1ec	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1ea	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1e	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1dc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1db	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1da	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1aa	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.1	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.0xv	Trust: 0.3
vendor:	cisco	model:	ios 12.0xu	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xs	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xr	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xq	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xp	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xn	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xm	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xl	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xk	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xj	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xi	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xh	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xg	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xf	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xe	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xd	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xa	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0wt	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0wc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0w5	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0st	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0sl	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0sc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0s	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0dc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0db	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0da	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.0	Trust: 0.3
vendor:	cisco	model:	ios 11.3t	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	11.3	Trust: 0.3
vendor:	cisco	model:	ios 11.2p	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	11.2	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	11.1	Trust: 0.3

sources: CERT/CC: VU#399355 // BID: 3547 // CNNVD: CNNVD-200111-011 // NVD: CVE-2001-0895

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2001-0895
value:	MEDIUM
Trust: 1.0
CARNEGIE MELLON:	VU#399355
value:	25.31
Trust: 0.8
CNNVD:	CNNVD-200111-011
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-3702
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2001-0895
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-3702
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CERT/CC: VU#399355 // VULHUB: VHN-3702 // CNNVD: CNNVD-200111-011 // NVD: CVE-2001-0895

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2001-0895

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200111-011

TYPE

Design Error

Trust: 0.9

sources: BID: 3547 // CNNVD: CNNVD-200111-011

EXTERNAL IDS

db:	BID	id:	3547	Trust: 2.8
db:	CERT/CC	id:	VU#399355	Trust: 2.5
db:	NVD	id:	CVE-2001-0895	Trust: 1.7
db:	OSVDB	id:	807	Trust: 1.7
db:	CNNVD	id:	CNNVD-200111-011	Trust: 0.7
db:	CISCO	id:	20011115 CISCO IOS ARP TABLE OVERWRITE VULNERABILITY	Trust: 0.6
db:	XF	id:	7547	Trust: 0.6
db:	VULHUB	id:	VHN-3702	Trust: 0.1

sources: CERT/CC: VU#399355 // VULHUB: VHN-3702 // BID: 3547 // CNNVD: CNNVD-200111-011 // NVD: CVE-2001-0895

REFERENCES

url:	http://www.cisco.com/warp/public/707/ios-arp-overwrite-vuln-pub.shtml	Trust: 3.5
url:	http://www.securityfocus.com/bid/3547	Trust: 3.5
url:	http://www.kb.cert.org/vuls/id/399355	Trust: 2.7
url:	http://www.osvdb.org/807	Trust: 2.7
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/7547	Trust: 2.1
url:	http://xforce.iss.net/xforce/xfdb/7547	Trust: 0.6

sources: CERT/CC: VU#399355 // VULHUB: VHN-3702 // CNNVD: CNNVD-200111-011 // NVD: CVE-2001-0895

CREDITS

This vulnerability was announced in a Cisco Security Advisory on November 15, 2001.

Trust: 0.9

sources: BID: 3547 // CNNVD: CNNVD-200111-011

SOURCES

db:	CERT/CC	id:	VU#399355
db:	VULHUB	id:	VHN-3702
db:	BID	id:	3547
db:	CNNVD	id:	CNNVD-200111-011
db:	NVD	id:	CVE-2001-0895

LAST UPDATE DATE

2024-11-22T22:59:29.828000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#399355	date:	2001-11-27T00:00:00
db:	VULHUB	id:	VHN-3702	date:	2017-10-10T00:00:00
db:	BID	id:	3547	date:	2001-11-15T00:00:00
db:	CNNVD	id:	CNNVD-200111-011	date:	2005-05-02T00:00:00
db:	NVD	id:	CVE-2001-0895	date:	2024-11-20T23:36:22.940

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#399355	date:	2001-11-15T00:00:00
db:	VULHUB	id:	VHN-3702	date:	2001-11-15T00:00:00
db:	BID	id:	3547	date:	2001-11-15T00:00:00
db:	CNNVD	id:	CNNVD-200111-011	date:	2001-11-15T00:00:00
db:	NVD	id:	CVE-2001-0895	date:	2001-11-15T05:00:00