[原文]Cisco 6400 Access Concentrator Node Route Processor 2 (NRP2) 12.1DC card does not properly disable access when a password has not been set for vtys, which allows remote attackers to obtain access via telnet.
The Cisco 6400 Access Concentrator Node Route Processor 2 (NRP2) module allows Telnet access when no password has been set. This allows attackers to trivially access the program or system, and may lead to a loss of confidentiality, integrity and/or availability.
Upgrade to version indicated by Cisco product matrix, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s):
Apply a password to all 32 vtys on the Access Concentrator Node Route Processor. To apply the password, execute the following command at the "Enable Prompt":
Enable Prompt> vty 0 31 password "password"