Unrated severityNVD Advisory· Published Oct 11, 2002· Updated Apr 16, 2026

CVE-2002-1189

Description

The default configuration of Cisco Unity 2.x and 3.x does not block international operator calls in the predefined restriction tables, which could allow authenticated users to place international calls using call forwarding.

Affected products

Cisco Systems, Inc./Unity Server8 versions
cpe:2.3:h:cisco:unity_server:2.0:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:h:cisco:unity_server:2.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:unity_server:2.1:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:unity_server:2.2:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:unity_server:2.3:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:unity_server:2.4:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:unity_server:2.46:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:unity_server:3.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:unity_server:3.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cisco.com/warp/public/707/toll-fraud-pub.shtmlnvdPatchVendor Advisory
www.iss.net/security_center/static/10282.phpnvdVendor Advisory
www.securityfocus.com/bid/5896nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000