Guest

Preview Tool

Cisco Bug: CSCul66624 - Just READ privilege on admin task id allows for full admin access

Last Modified

Jan 12, 2017

Products (1)

  • Cisco Carrier Routing System

Known Affected Releases

4.3.2.BASE

Description (partial)

Symptom:
User is able to get into admin mode with just the "READ" permission on the admin task id.

All three permissions "READ WRITE EXECUTE" are required on the "admin" task id for a user to be allowed to get into admin mode.

Conditions:
User has just "READ" permission on the admin task id:

RP/0/RSP0/CPU0:D20-PT-ASR9010-02#show user all | inc admin
Task:                admin  : READ                             
RP/0/RSP0/CPU0:D20-PT-ASR9010-02#
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.