CVE-2002-1934

Name of the Vulnerable Software and Affected Versions Pingtel xpressa SIP-based voice-over-IP phone versions 1.2.5 through 2.0.1

Description The issue allows attackers to obtain sensitive information, including the MD5 hash of the Admin password, MD5 hash of the physical password, and other registration information, during the boot-up process.

Recommendations For versions 1.2.5 through 2.0.1, as a temporary workaround, consider restricting access to the device during boot-up to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.