BayTech RPC-3 Telnet Daemon Remote Authentication Bypass
Critical Nessus Plugin ID 17663
SynopsisThe remote TELNET server is affected by an authentication bypass flaw.
DescriptionThe remote host is running a version of Bay Technical Associates RPC3 TELNET Daemon that lets a user bypass authentication by sending a special set of keystrokes at the username prompt. Since BayTech RPC3 devices provide remote power management, this vulnerability enables an attacker to cause a denial of service, shut down the device itself as well as any connected devices.
SolutionNone at this time. Filter incoming traffic to port 23 on this device.