Security Advisory

CVE-2002-0670

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2002-07-15 04:00:00

Last updated 2024-08-08 02:56:38

Assigner mitre

State PUBLISHED

Description

The web interface for Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 uses Base64 encoded usernames and passwords for HTTP basic authentication, which allows remote attackers to steal and easily decode the passwords via sniffing.

← Browse all CVEs View on cve.org ↗