CVE-2011-3289

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.4 and 15.0 through 15.2

Description The issue allows physically proximate attackers to bypass the No Service Password-Recovery feature and read the start-up configuration.

Recommendations For Cisco IOS versions 12.4 and 15.0 through 15.2, consider applying configuration changes to restrict physical access to the device until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.