I coded a little tool to reveal the saved passwords from a given profile file.
The Cisco Password Revealer along with the source code can be downloaded here.
The main problem of the method used to encrypt the passords is, that
the whole procedure is deterministically and no user input is used.
This effectively means that the encryption keys the Cisco Client
calculates can also be calculated by any other program whensoever this
programm knows the algorithm. This algorithm was now reversed.
Found on Evil Scientists.