PT-2002-1695 · Pingtel · Pingtel Xpressa

Published

2002-07-23

Updated

2017-10-10

CVE-2002-0668

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Pingtel xpressa SIP-based voice-over-IP phone versions 1.2.5 through 1.2.7.4

Description The issue allows authenticated users to modify the Call Forwarding settings, potentially leading to call hijacking.

Recommendations For versions 1.2.5 through 1.2.7.4, consider restricting access to the Call Forwarding settings in the web interface to prevent unauthorized modifications.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0668

Affected Products

Pingtel Xpressa

PT-2002-1695 · Pingtel · Pingtel Xpressa

CVE-2002-0668

Related Identifiers

Affected Products

References · 5