← CVECheck
HomeVulnerabilities

CVE-2002-0671 — CRITICAL severity vulnerability (Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through)

Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 downloads phone applications from a web site but can not verify the integrity of the applications, which could allow remote attackers to install Trojan horse applications via DNS spoofing.

CVE IDCVE-2002-0671
SeverityCRITICAL
CVSS score9.8
CVSS vectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWECWE-494
StatusModified
Published2002-07-23
Last modified2026-04-16
DescriptionPingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 downloads phone applications from a web site but can not verify the integrity of the applications, which could allow remote attackers to install Trojan horse applications via DNS spoofing.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →