Nortel Networks Router Unpassworded Account (User Level)

High Nessus Plugin ID 10529


The remote Telnet service can be accessed without a password.


The remote Telnet service has an account named 'User' that does not have a password.

This issue is known to affect Nortel Networks (formerly Bay Networks) routers. And it could allow an attacker to access the router, reconfigure it to block access, and prevent its use.


Set a password for the account.

Plugin Details

Severity: High

ID: 10529

File Name: nortel_pwdless2.nasl

Version: $Revision: 1.18 $

Type: remote

Family: Misc.

Published: 2000/10/06

Modified: 2015/09/24

Risk Information

Risk Factor: High


Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

Excluded KB Items: global_settings/supplied_logins_only

Vulnerability Publication Date: 2000/01/01

Reference Information

OSVDB: 428