VULHUB ™

Expressa is the Java-Based Voice-Over-IP phone developed and distributed by Pingtel. A vulnerability has been reported in Expressa phones where an attacker may use a shortcoming in the application installation process to install malicious software on the vulnerable system. Expressa application installs use HTTP without any authentication to obtain applications. Any updated packages are installed on the system as the phone user.

Expressa is the Java-Based Voice-Over-IP phone developed and distributed by Pingtel. A vulnerability has been reported in Expressa phones where an attacker may use a shortcoming in the application installation process to install malicious software on the vulnerable system. Expressa application installs use HTTP without any authentication to obtain applications. Any updated packages are installed on the system as the phone user.