ACC's Tigris Access Terminal Vulnerability

ACC's Tigris Access Terminal Vulnerability

Tigris Terminal Servers are easily accessible with a default username and password of 'public'.

In addition, at login prompt an attacker can press Ctrl-U (or simply backspace the line) and type in any command (such as 'show') to display currently running configuration.

This kind of vulnerability is significant as it allows any remote attacker to gain crittical configuration information about your terminal servers.