CVE-2002-2384

2007-10-3116:00:00

mitre

www.cve.org

hotfoon

vulnerability

cleartext

user credentials

registry key

AI Score

6.5

Confidence

Low

EPSS

Percentile

5.1%

JSON

hotfoon4.exe in Hotfoon 4.00 stores user names and passwords in cleartext in the hotfoon2 registry key, which allows local users to gain access to user accounts and steal phone service.

References

archives.neohapsis.com/archives/bugtraq/2002-11/0115.html

www.iss.net/security_center/static/10591.php

www.securityfocus.com/bid/6155