Threat Level: green Handler on Duty: Tom Webb

SANS ISC: Cisco IOS local privilege escalation - Internet Security | DShield SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Cisco IOS local privilege escalation
Cisco released earlier a vulnerability note detailing a problem within some Cisco IOS versions that bypasses the command authorization offered by AAA services such as TACACS+. The bypass uses tclsh.

Why a router would need tclsh is a mystery to this handler.

--
Swa Frantzen


Swa

760 Posts

Sign Up for Free or Log In to start participating in the conversation!