Vulnerabilities (CVE)

Filtered by vendor Hotfoon Corporation Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2004-1511 1 Hotfoon Corporation 1 Hotfoon 2024-11-20 5.0 MEDIUM N/A
Hotfoon 4.0 does not notify users before opening links in web browsers, which could allow remote attackers to execute arbitrary code via a certain link sent in a chat window.
CVE-2002-2385 1 Hotfoon Corporation 1 Hotfoon 2024-11-20 7.5 HIGH N/A
Buffer overflow in hotfoon4.exe in Hotfoon 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a URL containing a long voice phone number.
CVE-2002-2384 1 Hotfoon Corporation 1 Hotfoon 2024-11-20 3.6 LOW N/A
hotfoon4.exe in Hotfoon 4.00 stores user names and passwords in cleartext in the hotfoon2 registry key, which allows local users to gain access to user accounts and steal phone service.