Nortel Networks Router Unpassworded Account (User Level)

This script is Copyright (C) 2000-2013 Victor Kirhenshtein


Synopsis :

The remote Telnet service can be accessed without a password.

Description :

The remote Telnet service has an account named 'User' that does not
have a password.

This issue is known to affect Nortel Networks (formerly Bay Networks)
routers. And it could allow an attacker to access the router,
reconfigure it to block access, and prevent its use.

Solution :

Set a password for the account.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)

Family: Misc.

Nessus Plugin ID: 10529 ()

Bugtraq ID:

CVE ID: