CVE-2002-2384

2022-10-0316:23:50

mitre

www.cve.org

hotfoon

vulnerability

cleartext

user credentials

registry key

6.5 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

hotfoon4.exe in Hotfoon 4.00 stores user names and passwords in cleartext in the hotfoon2 registry key, which allows local users to gain access to user accounts and steal phone service.

References

archives.neohapsis.com/archives/bugtraq/2002-11/0115.html

www.iss.net/security_center/static/10591.php

www.securityfocus.com/bid/6155