Vulnerabilities > CVE-2002-2384 - Credentials Management vulnerability in Hotfoon Corporation Hotfoon 4.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
hotfoon4.exe in Hotfoon 4.00 stores user names and passwords in cleartext in the hotfoon2 registry key, which allows local users to gain access to user accounts and steal phone service.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |