|
|
Vulnerability Assessment & Network Security Forums |
|||||||||
|
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> CISCO >> Cisco IOS TCLSH AAA Command Authorization Bypass Vulnerability Vulnerability Assessment Details
|
Cisco IOS TCLSH AAA Command Authorization Bypass Vulnerability |
||
|
Uses SNMP to determine if a flaw is present Detailed Explanation for this Vulnerability Assessment Summary : The remote router contains a flaw which may let users with shell access to elevate their rights Description : The remote host is a CISCO router containing a version of IOS which is vulnerable to a remote AAA command autorization bypass vulnerability. The remote version of IOS does not enforce AAA command authorization checks for commands etnered in the TCL shell. A possible hacker with a shell access on the remote route may gain elevated rights on the remote device. Solution : http://www.cisco.com/warp/public/707/cisco-response-20060125-aaatcl.shtml Network Security Threat Level: Medium / CVSS Base Score : 4 (AV:L/AC:L/Au:R/C:C/A:C/I:C/B:N) Networks Security ID: 16383 Vulnerability Assessment Copyright: This script is (C) 2006 Tenable Network Security |
||
|
KVM Switch Boxes, Cables |
|
||
|
No Discussions have been posted on this vulnerability. |