Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0669

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-0669
Last Modified 05 Sep 2008 04:28:38
Published 19 Feb 2003 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0669

Summary

The web interface for Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 allows administrators to cause a denial of service by modifying the SIP_AUTHENTICATE_SCHEME value to force authentication of incoming calls, which does not notify the user when an authentication failure occurs.

Vulnerable Systems


References

ATSTAKE - A071202-1

XF - pingtel-xpressa-web-dos(9564)


Last Updated: 27 May 2016 10:37:01