CVE-2011-3289
Cisco IOS 12.4 and 15.0 through 15.2 allows physically proximate attackers to bypass the No Service Password-Recovery feature and read the start-up configuration via unspecified vectors, aka Bug ID CSCtr97640.
Date published : 2012-05-02
http://www.cisco.com/en/US/docs/ios/15_1/release/notes/151-2TCAVS.html