CVE-2002-1189

Sažetak

The default configuration of Cisco Unity 2.x and 3.x does not block international operator calls in the predefined restriction tables, which could allow authenticated users to place international calls using call forwarding.

Reference

http://www.cisco.com/warp/public/707/toll-fraud-pub.shtml
http://www.iss.net/security_center/static/10282.php
http://www.securityfocus.com/bid/5896

CVSS

Base:	4.6
Impact:	6.4
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

10-09-2008 - 19:14

Objavljeno

11-10-2002 - 04:00