Hotfoon Corporation : Security Vulnerabilities, CVEs,
Buffer overflow in hotfoon4.exe in Hotfoon 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a URL containing a long voice phone number.
Max CVSS
7.5
EPSS Score
7.77%
Published
2002-12-31
Updated
2008-09-05
hotfoon4.exe in Hotfoon 4.00 stores user names and passwords in cleartext in the hotfoon2 registry key, which allows local users to gain access to user accounts and steal phone service.
Max CVSS
3.6
EPSS Score
0.04%
Published
2002-12-31
Updated
2008-09-05
2 vulnerabilities found