Cisco IOS AAA RADIUS Authentication Bypass Vulnerability

info
discussion
exploit
solution
references

Cisco IOS AAA RADIUS Authentication Bypass Vulnerability

Cisco IOS Remote Authentication Dial In User Service (RADIUS) is prone to a remote authentication bypass vulnerability.

The issue manifests when Cisco IOS is configured to employ AAA RADIUS authentication and is configured to use 'none' as a fallback method.

A remote attacker may exploit this issue to bypass authentication and gain unauthorized access to the affected service.