Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2004-1511 | 1 Hotfoon Corporation | 1 Hotfoon | 2024-11-20 | 5.0 MEDIUM | N/A |
Hotfoon 4.0 does not notify users before opening links in web browsers, which could allow remote attackers to execute arbitrary code via a certain link sent in a chat window. | |||||
CVE-2002-2385 | 1 Hotfoon Corporation | 1 Hotfoon | 2024-11-20 | 7.5 HIGH | N/A |
Buffer overflow in hotfoon4.exe in Hotfoon 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a URL containing a long voice phone number. | |||||
CVE-2002-2384 | 1 Hotfoon Corporation | 1 Hotfoon | 2024-11-20 | 3.6 LOW | N/A |
hotfoon4.exe in Hotfoon 4.00 stores user names and passwords in cleartext in the hotfoon2 registry key, which allows local users to gain access to user accounts and steal phone service. |