Blank Password Bypass Vulnerability in Cisco ONS 15327 and 15454

Blank Password Bypass Vulnerability in Cisco ONS 15327 and 15454

CVE-2004-1436 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The Transaction Language 1 (TL1) login interface in Cisco ONS 15327 4.6(0) and 4.6(1) and 15454 and 15454 SDH 4.6(0) and 4.6(1), when a user account is configured with a blank password, allows remote attackers to gain unauthorized access by logging in with a password larger than 10 characters.

Learn more about our Cis Benchmark Audit For Cisco.