Cisco Unity With Microsoft Exchange Multiple Default Accounts

Network Security News – Monday, April 04, 2005 Events

Cisco Unity With Microsoft Exchange Multiple Default Accounts

Cisco Unity integrated with Microsoft Exchange contains a flaw that may allow a remote attacker to gain access to unauthorized privileges. The issue is triggered due to multiple default accounts with well-known usernames and passwords, which may allow a remote attacker to gain administrative access resulting in a loss of integrity.. Read more at osvdb.org/12408

Cisco Unity Arbitrary International Operator Calls

Cisco Unity contains a flaw that may allow a remote attacker to arbitrary place international calls. The issue is triggered due to the default configuration in the predefined restriction tables, which does not block calls to the international operator. It is possible that the flaw may allow a remote attacker to arbitrary configure call forwardings to the international operator or other restricted numbers, resulting in a loss of integrity.. Read more at osvdb.org/15200