Cisco NRP2 Unauthorized Telnet Access Vulnerability

The Cisco Node Route Processor 2 card is a module designed to enhance the services of the Cisco 6400 series broadband aggregators. It is distributed by Cisco Systems.

A problem in the Node Route Processor 2 (NRP2) makes it possible for remote users to gain unauthorized access to vtys. The default configuration of the NRP2 allows access to the vtys of the module when no password has been set. By default configuration, the NRP2 should allow no access until a password has been set.

This makes it possible for a remote user to gain access to systems behind the NRP2 module, potentially accessing secure systems.


Privacy Statement
Copyright 2010, SecurityFocus