Cisco NX-OS Software TACACS+ Command Authorization Vulnerability

2014-01-23T13:10:53
ID CISCO-SA-20140123-CVE-2014-0676
Type cisco
Reporter Cisco
Modified 2014-01-23T13:10:44

Description

A vulnerability in the TACACS+ command authorization code of Cisco NX-OS Software could allow an authenticated, local attacker to execute certain commands without TACACS+ server authorization.

The vulnerability is due to the processing of certain commands when executed in a sequence. An attacker could exploit this vulnerability by executing multiple commands in a sequence. A successful exploit could allow the attacker to execute certain commands without TACACS+ server authorization.

Cisco has confirmed the vulnerability in a security notice; however, software updates are not available.

To exploit this vulnerability, an attacker must have local access to an affected device. This access requirement reduces the possibility of a successful exploit.

Cisco indicates through the CVSS score that proof-of-concept exploit code exists; however, the code is not known to be publicly available.