Lucene search
HistorySep 01, 2004 - 4:00 a.m.
CVE-2002-1189
cisco
unity
international calls
call forwarding
security vulnerability
nvd
cve-2002-1189
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
6.8 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
20.8%
The default configuration of Cisco Unity 2.x and 3.x does not block international operator calls in the predefined restriction tables, which could allow authenticated users to place international calls using call forwarding.
Affected configurations
Node
ciscounity_serverMatch2.0
ORciscounity_serverMatch2.1
ORciscounity_serverMatch2.2
ORciscounity_serverMatch2.3
ORciscounity_serverMatch2.4
ORciscounity_serverMatch2.46
ORciscounity_serverMatch3.0
ORciscounity_serverMatch3.1
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
6.8 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
20.8%
Related for CVE-2002-1189