CVE-2004-1322
First published: Wed Dec 15 2004(Updated: )
Cisco Unity 2.x, 3.x, and 4.x, when integrated with Microsoft Exchange, has several hard coded usernames and passwords, which allows remote attackers to gain unauthorized access and change configuration settings or read outgoing or incoming e-mail messages.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Unity Server | =2.2 | |
| Cisco Unity Server | =3.0 | |
| Cisco Unity Server | =3.1 | |
| Cisco Unity Server | =3.3 | |
| Cisco Unity Server | =2.3 | |
| Cisco Unity Server | =3.2 | |
| Cisco Unity Server | =2.1 | |
| Cisco Unity Server | =2.46 | |
| Cisco Unity Server | =2.4 | |
| Cisco Unity Server | =2.0 | |
| Cisco Unity Server | =4.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/references
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/event
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/cisco
- canonical/cisco unity server
- version/cisco unity server/2.0
- version/cisco unity server/2.1
- version/cisco unity server/2.2
- version/cisco unity server/2.3
- version/cisco unity server/2.4
- version/cisco unity server/2.46
- version/cisco unity server/3.0
- version/cisco unity server/3.1
- version/cisco unity server/3.2
- version/cisco unity server/3.3
- version/cisco unity server/4.0