Vigil@nce - Cisco ASR 5000: privilege escalation via StarOS SSH
April 2016 by Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
A local attacker can authenticate on SSH of Cisco ASR 5000 with
StarOS, in order to escalate his privileges.
Impacted products: Cisco ASR.
Severity: 2/4.
Creation date: 19/02/2016.
DESCRIPTION OF THE VULNERABILITY
The Cisco ASR 5000 product offers a SSH service.
However, when the authentication uses SSH keys, a local attacker
can access to the account of another user.
A local attacker can therefore authenticate on SSH of Cisco ASR
5000 with StarOS, in order to escalate his privileges.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
https://vigilance.fr/vulnerability/Cisco-ASR-5000-privilege-escalation-via-StarOS-SSH-18978