Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3289

Overview

Vulnerability Score 3.6 3.6
CVE Id CVE-2011-3289
Last Modified 29 Oct 2012 11:55:59
Published 02 May 2012 06:09:21
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2011-3289

Summary

Cisco IOS 12.4 and 15.0 through 15.2 allows physically proximate attackers to bypass the No Service Password-Recovery feature and read the start-up configuration via unspecified vectors, aka Bug ID CSCtr97640.

Vulnerable Systems

Operating System

  • Cisco Ios 12.4

  • Cisco Ios 15.0

  • Cisco Ios 15.1

  • Cisco Ios 15.2


References

CONFIRM - http://www.cisco.com/en/US/docs/ios/15_1/release/notes/151-2TCAVS.html

SECTRACK - 1027005


Last Updated: 27 May 2016 10:49:44