What, again?
This isn't the first time some cisco thing turns out to come with hard-coded full-access credentials. One previous occurrence was with their VoIP provisioning suite, maybe?
And of course you need a current-and-paid-up service contract or their broken software remains broken for you. In a better world this would give rise to lawsuits of having sold goods that turn out to be unfit-for-service (as Software Does Not Fail). As it is, cisco manages to fleece their customers even in failure. I'd boot them off my preferred suppliers list if they were on it.