Vigil@nce - Cisco NX-OS: file reading via tar
January 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An authenticated attacker can use the tar command on the CLI of
Cisco NX-OS, in order to traverse directories, to read files
located on the system.
Impacted products: Cisco Nexus, NX-OS
Severity: 2/4
Creation date: 20/12/2013
DESCRIPTION OF THE VULNERABILITY
An authenticated attacker can use the tar command on the CLI of
Cisco NX-OS, in order to traverse directories, to read files
located on the system.
Technical details are unknown.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-NX-OS-file-reading-via-tar-13969