CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0669

The web interface for Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 allows administrators to cause a denial of service by modifying the SIP_AUTHENTICATE_SCHEME value to force authentication of incoming calls, which does not notify the user when an authentication failure occurs.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.4%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.atstake.com/research/advisories/2002/a071202-1.txt
http://www.iss.net/security_center/static/9564.php
http://www.atstake.com/research/advisories/2002/a071202-1.txt
http://www.iss.net/security_center/static/9564.php

Products affected by CVE-2002-0669

Pingtel » Xpressa » Version: 1.2.5

cpe:2.3:h:pingtel:xpressa:1.2.5
Pingtel » Xpressa » Version: 1.2.7.4

cpe:2.3:h:pingtel:xpressa:1.2.7.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0669

Products

Pricing

Contact Us