2 matches found
CVE-2002-1935
Pingtel Xpressa 1.2.5 through 2.0.1 uses predictable 1 Call-ID, 2 CSeq, and 3 "To" and "From" SIP URL values in a Session Identification Protocol SIP request, which allows remote attackers to avoid registering with the SIP registrar...
PT-2002-2656 · Pingtel · Pingtel Xpressa
Name of the Vulnerable Software and Affected Versions: Pingtel Xpressa versions 1.2.5 through 2.0.1 Description: The issue allows remote attackers to avoid registering with the SIP registrar by exploiting predictable values in a Session Identification Protocol SIP request, specifically the Call-I...