CVE-2002-0669

Name of the Vulnerable Software and Affected Versions Pingtel xpressa SIP-based voice-over-IP phone versions 1.2.5 through 1.2.7.4

Description The issue affects the web interface, allowing administrators to cause a denial of service. This can be done by modifying the SIP AUTHENTICATE SCHEME value, which forces authentication of incoming calls without notifying the user of authentication failures.

Recommendations For versions 1.2.5 through 1.2.7.4, consider restricting modifications to the SIP AUTHENTICATE SCHEME value to prevent denial of service attacks. As a temporary workaround, monitor the authentication process closely to detect potential failures. At the moment, there is no information about a newer version that contains a fix for this vulnerability.