This has come up on numerous 6500 devices in my organisation (only recently though, don't think they were on previous scans). Supposedly these devices allow a NULL password? I would love to find some more details on this, the config looks locked down on every management protocol when I look at it. I don't understand how this has been flagged.
Anyone know details to the official Cisco notification on it? The only one I could find was for very old software.