Lucene search

PRIOn knowledge basePRION:CVE-2006-0485

HistoryFeb 01, 2006 - 2:02 a.m.

Authorization

2006-02-0102:02:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

25.6%

JSON

The TCL shell in Cisco IOS 12.2(14)S before 12.2(14)S16, 12.2(18)S before 12.2(18)S11, and certain other releases before 25 January 2006 does not perform Authentication, Authorization, and Accounting (AAA) command authorization checks, which may allow local users to execute IOS EXEC commands that were prohibited via the AAA configuration, aka Bug ID CSCeh73049.

CPENameOperatorVersion
ioseq12.3.0-ym
ioseq12.3.0-yq
ioseq12.3.0-xr
ioseq12.0.0-xk
ioseq12.4.116
ioseq12.0.0-xr
ioseq12.1.0-xm
ioseq12.1.0-xi
ioseq12.1.101
ioseq12.3.0-ya

Name	Operator	Version
ios	eq	12.3.0-ym
ios	eq	12.3.0-yq
ios	eq	12.3.0-xr
ios	eq	12.0.0-xk
ios	eq	12.4.116
ios	eq	12.0.0-xr
ios	eq	12.1.0-xm
ios	eq	12.1.0-xi
ios	eq	12.1.101
ios	eq	12.3.0-ya

Rows per page:

1-10 of 1301

References

secunia.com/advisories/18613

securitytracker.com/id?1015543

www.cisco.com/warp/public/707/cisco-response-20060125-aaatcl.shtml

www.osvdb.org/34892

www.securityfocus.com/bid/16383

www.vupen.com/english/advisories/2006/0337

exchange.xforce.ibmcloud.com/vulnerabilities/24308

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5836