Vigil@nce: Cisco IOS, obtaining the start-up configuration
May 2012 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
A local attacker can bypass the "no service password-recovery"
feature, in order to obtain the start-up configuration.
– Severity: 2/4
– Creation date: 09/05/2012
IMPACTED PRODUCTS
– Cisco IOS
– Cisco Router
DESCRIPTION OF THE VULNERABILITY
A local attacker can bypass the "no service password-recovery"
feature, in order to obtain the start-up configuration.
Technical details are unknown.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-IOS-obtaining-the-start-up-configuration-11609