VYPR
Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Jun 16, 2026

CVE-2002-1934

CVE-2002-1934

Description

Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 2.0.1 leaks sensitive information during boot-up, which allows attackers to obtain the MD5 hash of the Admin password, MD5 hash of the physical password, and other registration information.

Affected products

6
  • Pingtel/Xpressa6 versions
    cpe:2.3:h:pingtel:xpressa:1.2.5:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:h:pingtel:xpressa:1.2.5:*:*:*:*:*:*:*
    • cpe:2.3:h:pingtel:xpressa:1.2.7.4:*:*:*:*:*:*:*
    • cpe:2.3:h:pingtel:xpressa:1.2.8:*:*:*:*:*:*:*
    • cpe:2.3:h:pingtel:xpressa:2.0:*:*:*:*:*:*:*
    • cpe:2.3:h:pingtel:xpressa:2.0.1:*:*:*:*:*:*:*
    • (no CPE)range: >=1.2.5 <=2.0.1

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.