Guest

Preview Tool

Cisco Bug: CSCuq24202 - Cisco IOS TCL script interpreter privilege escalation vulnerability

Last Modified

Nov 27, 2020

Products (2)

  • Cisco 2600 Series Multiservice Platforms
  • Cisco 2600 Series Multiservice Platforms

Known Affected Releases

15.2(4)M6

Description (partial)

Symptom:
A vulnerability in the TCL script interpreter of Cisco IOS Software
could allow an authenticated, local attacker to escalate its privileges
from those of a non-privileged user to a privileged (level 15) user.
This would allow a non-privileged user to execute privileged commands
(those under privilege level 15).

The vulnerability is due to an error on resetting VTY privileges after
running a TCL script. An attacker could exploit this vulnerability by
establishing a session to an affected device immediately after a TCL
script has been run. An attacker would need to provide valid credentials
and successfully pass authentication to the device.

Conditions:
This behavior is timing dependent, as the attacker would need to log-in
to the device immediately after the TCL script finishes execution.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.