Vulnerabilities > Microsoft > MSN Messenger > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-01-22 | CVE-2006-0363 | Local Security vulnerability in Microsoft MSN Messenger 7.5 The "Remember my Password" feature in MSN Messenger 7.5 stores passwords in an encrypted format under the HKEY_CURRENT_USER\Software\Microsoft\IdentityCRL\Creds registry key, which might allow local users to obtain the original passwords via a program that calls CryptUnprotectData, as demonstrated by the "MSN Password Recovery.exe" program. | 2.1 |