Cisco 675 routers running CBOS allow remote malicious users to establish telnet sessions if an exec or superuser password has not been set.
cisco 675 router