Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 downloads phone applications from a web site but can not verify the integrity of the applications, which could allow remote attackers to install Trojan horse applications via DNS spoofing.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2002-07-22 21:00
Updated : 2008-09-10 12:12
NVD link : CVE-2002-0671
Mitre link : CVE-2002-0671
JSON object : View
CWE
Products Affected
pingtel
- xpressa