Vigil@nce - Cisco IOS XE: privilege escalation via ANI
October 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can send an invalid message to ANI of Cisco IOS XE, in
order to escalate his privileges.
Impacted products: Cisco Catalyst, IOS XE
Severity: 2/4
Creation date: 10/10/2014
DESCRIPTION OF THE VULNERABILITY
An attacker can send an invalid message to ANI of Cisco IOS XE, in
order to escalate his privileges.
Technical details are unknown.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-IOS-XE-privilege-escalation-via-ANI-15460