CVE-2011-3289 Information

Description

Cisco IOS 12.4 and 15.0 through 15.2 allows physically proximate attackers to bypass the No Service Password-Recovery feature and read the start-up configuration via unspecified vectors aka Bug ID CSCtr97640.

Reference

http://www.cisco.com/en/US/docs/ios/15_1/release/notes/151-2TCAVS.html http://www.securitytracker.com/id?1027005