CVE-2008-4540

Windows Mobile 6 on the HTC Hermes device makes WLAN passwords available to an auto-completion mechanism for the password input field, which allows physically proximate attackers to bypass password authentication and obtain WLAN access.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:h:htc:hermes:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_mobile:6.0:*:*:*:*:*:*:*

History

21 Nov 2024, 00:51

Type Values Removed Values Added
References () http://securityreason.com/securityalert/4402 - () http://securityreason.com/securityalert/4402 -
References () http://www.securityfocus.com/archive/1/497151/100/0/threaded - () http://www.securityfocus.com/archive/1/497151/100/0/threaded -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/45857 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/45857 -

Information

Published : 2008-10-13 20:00

Updated : 2024-11-21 00:51


NVD link : CVE-2008-4540

Mitre link : CVE-2008-4540

CVE.ORG link : CVE-2008-4540


JSON object : View

Products Affected

microsoft

  • windows_mobile

htc

  • hermes
CWE
CWE-255

Credentials Management Errors