← CVECheck
HomeVulnerabilities

CVE-2002-0670 — HIGH severity vulnerability (The web interface for Pingtel xpressa SIP-based voice-over-I)

The web interface for Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 uses Base64 encoded usernames and passwords for HTTP basic authentication, which allows remote attackers to steal and easily decode the passwords via sniffing.

CVE IDCVE-2002-0670
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2002-07-23
Last modified2026-04-16
DescriptionThe web interface for Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 uses Base64 encoded usernames and passwords for HTTP basic authentication, which allows remote attackers to steal and easily decode the passwords via sniffing.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →