Vulnerability Details CVE-2015-0607
The Authentication Proxy feature in Cisco IOS does not properly handle invalid AAA return codes from RADIUS and TACACS+ servers, which allows remote attackers to bypass authentication in opportunistic circumstances via a connection attempt that triggers an invalid code, as demonstrated by a connection attempt with a blank password, aka Bug IDs CSCuo09400 and CSCun16016.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.7%
CVSS Severity
CVSS v2 Score 4.3
References
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0607
- http://tools.cisco.com/security/center/viewAlert.x?alertId=37711
- http://www.securityfocus.com/bid/72794
- http://www.securitytracker.com/id/1031817
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0607
- http://tools.cisco.com/security/center/viewAlert.x?alertId=37711
- http://www.securityfocus.com/bid/72794
- http://www.securitytracker.com/id/1031817
Products affected by CVE-2015-0607
-
cpe:2.3:o:cisco:ios:15.4(1)t
-
cpe:2.3:o:cisco:ios:15.4(1)t1
-
cpe:2.3:o:cisco:ios:15.4(1)t2
-
cpe:2.3:o:cisco:ios:15.4(1)t3
-
cpe:2.3:o:cisco:ios:15.4(1)t4
-
cpe:2.3:o:cisco:ios:15.4(100)t
-
cpe:2.3:o:cisco:ios:15.4(2)t
-
cpe:2.3:o:cisco:ios:15.4(2)t1
-
cpe:2.3:o:cisco:ios:15.4(2)t2
-
cpe:2.3:o:cisco:ios:15.4(2)t3
-
cpe:2.3:o:cisco:ios:15.4t