CVE Vulnerabilities

CVE-2004-1322

Published: Dec 15, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Cisco Unity 2.x, 3.x, and 4.x, when integrated with Microsoft Exchange, has several hard coded usernames and passwords, which allows remote attackers to gain unauthorized access and change configuration settings or read outgoing or incoming e-mail messages.

Affected Software

Name Vendor Start Version End Version
Unity_server Cisco 2.0 (including) 2.0 (including)
Unity_server Cisco 2.1 (including) 2.1 (including)
Unity_server Cisco 2.2 (including) 2.2 (including)
Unity_server Cisco 2.3 (including) 2.3 (including)
Unity_server Cisco 2.4 (including) 2.4 (including)
Unity_server Cisco 2.46 (including) 2.46 (including)
Unity_server Cisco 3.0 (including) 3.0 (including)
Unity_server Cisco 3.1 (including) 3.1 (including)
Unity_server Cisco 3.2 (including) 3.2 (including)
Unity_server Cisco 3.3 (including) 3.3 (including)
Unity_server Cisco 4.0 (including) 4.0 (including)

References