A default configuration allows full admin access to unauthenticated attackers. A critical and unpatched vulnerability in the widely deployed Cisco Small Business Switch software leaves the door open