Nortel/Bay Networks/Xylogics Annex Default Password

high Nessus Plugin ID 11201

Synopsis

The remote host is reachable with known default credentials.

Description

The remote terminal server has the default password set.
This means that anyone who has (downloaded) a user manual can telnet to it and gain administrative access.

If modems are attached to this terminal server, it may allow unauthenticated, remote access to the network.

Solution

Telnet to this terminal server change to the root user with 'su' and set the password with the 'passwd' command.
Then, go to the admin mode using the 'admin' command. Cli security can then be enabled by setting the vcli_security to 'Y' with the command 'set annex vcli_security Y'. This will require ERPCD or RADIUS authentication for access to the terminal server. Changes can then be applied through the 'reset annex all' command.

Plugin Details

Severity: High

ID: 11201

File Name: nortel_annex_default_pass.nasl

Version: Revision: 1.13

Type: remote

Family: Misc.

Published: 1/18/2003

Updated: 10/9/2015

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: High

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

Excluded KB Items: global_settings/supplied_logins_only