CVE-2014-7992 Information

Description

The DLSw implementation in Cisco IOS does not initialize packet buffers which allows remote attackers to obtain sensitive credential information from process memory via a session on TCP port 2067 aka Bug ID CSCur14014.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7992 http://tools.cisco.com/security/center/viewAlert.x?alertId=36453 http://www.securityfocus.com/bid/71145 http://www.securitytracker.com/id/1031220 https://exchange.xforce.ibmcloud.com/vulnerabilities/98724