Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 up to and including 2.0.1 leaks sensitive information during boot-up, which allows malicious users to obtain the MD5 hash of the Admin password, MD5 hash of the physical password, and other registration information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pingtel xpressa 2.0 |
||
pingtel xpressa 1.2.8 |
||
pingtel xpressa 1.2.7.4 |
||
pingtel xpressa 1.2.5 |
||
pingtel xpressa 2.0.1 |