Nessus Plugin #11201
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
Nortel/Bay Networks/Xylogics Annex default password
- Family:
- Misc.
- Category:
- attack
- Copyright:
- This script is Copyright (C) 2003 Douglas Minderhout
- Summary:
- Logs into the remote Nortel terminal server
- Version:
- $Revision: 1.1 $
- Cve_id:
- -
- Bugtraq_id:
- -
- Xrefs:
- -
- Description:
The remote terminal server has the default password set.
This means that anyone who has (downloaded) a user manual can
telnet to it and gain administrative access.
If modems are attached to this terminal server, it may allow
unauthenticated remote access to the network.
Solution: Telnet to this terminal server change to the root
user with 'su' and set the password with the 'passwd' command.
Then, go to the admin mode using the 'admin' command. Cli
security can then be enabled by setting the vcli_security to
'Y' with the command 'set annex vcli_security Y'. This will
require ERPCD or RADIUS authentication for access to the
terminal server. Changes can then be applied through the
'reset annex all' command.
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.