Published: 31/12/2004 Updated: 11/07/2017

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 215

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

Riverdeep FoolProof Security 3.9.x on Windows 98 and Windows ME uses weak cryptography (arithmetic and XOR operations) to relate the Control password to the Administrator password, which allows local users to calculate the Administrator password if they know the Control password and password recovery key.

Vulnerable Product	Search on Vulmon	Subscribe to Product
smartstuff foolproof security 3.9
smartstuff foolproof security 3.9.4
smartstuff foolproof security 3.9.7

source: wwwsecurityfocuscom/bid/10467/info FoolProof is prone to a vulnerability that may allow an unprivileged user to recover the administrative password for the application This issue can ultimately allow an attacker to gain unauthorized administrative access to the application This issue occurs because an attacker can manipulate th ...

NVD-CWE-Other http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0081.html http://www.securityfocus.com/bid/10467 http://www.osvdb.org/6735 http://secunia.com/advisories/11790 https://exchange.xforce.ibmcloud.com/vulnerabilities/16327 https://nvd.nist.gov https://www.exploit-db.com/exploits/24171/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-2555

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect