Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Cajun P550 Lucent Switch Manament console reset root password

Posted on 2004-09-08
3
Medium Priority
?
936 Views
Last Modified: 2008-01-09
I have recently started w/ a company and the password that was set on the Cajun P550 Management port(root user) is missing(no one remembers it). How do I go about reseting the swith to the default setting(like from the factory).
I need to setup more ports on the switch and configure the some VLAN port. I am unable to do so until I can logon.
0
Comment
Question by:jszarka
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 

Author Comment

by:jszarka
ID: 12013007
I answered it myself, I am posting for others to use.
Security alert, thank god for security holes
*******************************************************
Vulnerable systems:
 * Avaya Cajun P580 software version 5.2.14

Immune systems:
 * Avaya Cajun P580 software version 5.3.0

All previous software versions are assumed to be vulnerable. This problem is present in Cajun P550, P550R,P580,P880 and P882.

Details:
The vulnerable firmware installs the following strings into the switch configuration by default:

username "root" password encrypted-type1 "$tSfIcnbTP.pxRf7BrhGW31" access-type admin
username "diag" password encrypted-type1 "$PQO.vGxkvDHkEDCJ2YsoD1" access-type read-write
username "manuf" password encrypted-type1 "$seHFLP9b16m2v/534WCk90" access-type read-write

The only documented password is for the root user. This user can't change the diag and manuf accounts.

The un-documented passwords are:
user password
---- --------
diag danger
manuf xxyyzz

Both of these accounts give developer access to the switch (read-write access-type), which is more privileged than normal administrative access (admin access-type).

Recommendations:
As always it is good administrative practice to block access to administrative interfaces (telnet, web) at the firewall. Upgrading to software version 5.3.0 or later and disabling the accounts resolves this issue.

As a temporary workaround download the configuration file via TFTP, edit out these accounts, or change their password hashes, and upload it to the switch.

Vendor status:
AVAYA was informed on 2 Oct 2002. The vendor responded the same day, proved responsive and worked promptly on the problem. Jacek has agreed to release the information after the release of the official AVAYA advisory. The official Avaya advisory was out on 11 Oct 2002. The fixed software is available from the Avaya support site http://support.avaya.com/.
0
 

Accepted Solution

by:
modulo earned 0 total points
ID: 12761915
PAQed with points refunded (500)

modulo
Community Support Moderator
0

Featured Post

Veeam Disaster Recovery in Microsoft Azure

Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A clone is a duplicate copy. Sheep have been cloned and maybe someday even people will be cloned, but disk cloning (performed by the hard drive cloning software) is a vital tool used to manage and protect data. Let’s look at what hard drive cloning …
If you're a modern-day technology professional, you may be wondering if certifications are really necessary. They are. Here's why.
Visualize your data even better in Access queries. Given a date and a value, this lesson shows how to compare that value with the previous value, calculate the difference, and display a circle if the value is the same, an up triangle if it increased…
In this video, Percona Solution Engineer Rick Golba discuss how (and why) you implement high availability in a database environment. To discuss how Percona Consulting can help with your design and architecture needs for your database and infrastr…

610 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question