CVE-2002-2384

Sažetak

hotfoon4.exe in Hotfoon 4.00 stores user names and passwords in cleartext in the hotfoon2 registry key, which allows local users to gain access to user accounts and steal phone service.

Reference

http://archives.neohapsis.com/archives/bugtraq/2002-11/0115.html
http://www.iss.net/security_center/static/10591.php
http://www.securityfocus.com/bid/6155

CVSS

Base:	3.6
Impact:	4.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:P/A:N

Zadnje važnije ažuriranje

05-09-2008 - 20:33

Objavljeno

31-12-2002 - 05:00