Cisco IOS 12.2 up to and including 12.4 and 15.0 does not recognize the vrf-also keyword during enforcement of access-class commands, which allows remote malicious users to establish SSH connections from arbitrary source IP addresses via a standard SSH client, aka Bug ID CSCsv86113.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco ios 12.3 |
||
cisco ios 12.4 |
||
cisco ios 12.2 |
||
cisco ios 15.0 |