CVE-2003-0983

Published: Jan 5, 2004Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Cisco Unity on IBM servers is shipped with default settings that should have been disabled by the manufacturer, which allows local or remote attackers to conduct unauthorized activities via (1) a "bubba" local user account, (2) an open TCP port 34571, or (3) when a local DHCP server is unavailable, a DHCP server on the manufacturer's test network.

Affected (2)

Products: Cisco: 80 7111 01 For The Unity Svrx255 1a, 80 7112 01 For The Unity Svrx255 2a

2 products

80 7111 01 For The Unity Svrx255 1a

80 7112 01 For The Unity Svrx255 2a

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Cisco 80 7111 01 For The Unity Svrx255 1a	All versions
Cisco 80 7112 01 For The Unity Svrx255 2a	All versions

References (2)

http://www.cisco.com/warp/public/707/cisco-sa-20031210-unity.shtml

Source: cve@mitre.org

PatchVendor Advisory

http://www.cisco.com/warp/public/707/cisco-sa-20031210-unity.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.