52 matches found
EUVD-2002-1913
Malware in sbrugna...
EUVD-2002-0661
Malware in sbrugna...
EUVD-2002-0662
Malware in sbrugna...
EUVD-2002-0663
Malware in sbrugna...
EUVD-2002-0664
Malware in sbrugna...
EUVD-2002-0666
Malware in sbrugna...
EUVD-2002-0667
Malware in sbrugna...
EUVD-2002-0669
Malware in sbrugna...
EUVD-2002-1914
Malware in sbrugna...
EUVD-2004-1674
Malware in sbrugna...
CVE-2002-1935
Pingtel Xpressa 1.2.5 through 2.0.1 uses predictable 1 Call-ID, 2 CSeq, and 3 "To" and "From" SIP URL values in a Session Identification Protocol SIP request, which allows remote attackers to avoid registering with the SIP registrar...
CVE-2002-1934
Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 2.0.1 leaks sensitive information during boot-up, which allows attackers to obtain the MD5 hash of the Admin password, MD5 hash of the physical password, and other registration information...
Pingtel Xpressa 1.2.x/2.0/2.1 Handset Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11161/info Pingtel Xpressa handsets are reported prone to a remote denial of service vulnerability. The issue is reported to exist because of a lack of sufficient boundary checks performed on HTTP request data handled by...
CVE-2002-1935
Pingtel Xpressa versions 1.2.5 through 2.0.1 are affected by CVE-2002-1935 due to predictable Call-ID, CSeq, and To/From SIP URL values in SIP requests, which can let remote attackers avoid registering with the SIP registrar. The root cause is the lack of randomness in SIP identifiers, enabling a...
CVE-2002-1934
Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 2.0.1 leaks sensitive information during boot-up, which allows attackers to obtain the MD5 hash of the Admin password, MD5 hash of the physical password, and other registration information...
CVE-2004-1680
The CVE-2004-1680 issue affects the Pingtel Xpressa handset (firmware 2.1.11.24) where application.cgi can be abused by remote authenticated users via a long HTTP GET request, potentially triggering a buffer overflow and causing a VxWorks OS crash (DoS). Connected sources confirm the vulnerabilit...
CVE-2004-1680
application.cgi in the Pingtel Xpressa handset running firmware 2.1.11.24 allows remote authenticated users to cause a denial of service VxWorks OS crash via a long HTTP GET request, possibly triggering a buffer overflow...
Pingtel Xpressa DoS
DoS through web interface...
@stake advisory: Pingtel Xpressa Denial of Service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake, Inc. www.atstake.com Security Advisory Advisory Name: Pingtel Xpressa Denial of Service Release Date: 09-13-2004 Device: Xpressa phone Model PX-1 Firmware: Core Apps: 2.1.11.24 Kernel: 2.1.11.24 Severity: An attacker can cause the phone to fai...
CVE-2004-1680
application.cgi in the Pingtel Xpressa handset running firmware 2.1.11.24 allows remote authenticated users to cause a denial of service VxWorks OS crash via a long HTTP GET request, possibly triggering a buffer overflow...