Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq: Hotline Client Plain password vuln.

Hotline Client Plain password vuln.

From: Rense Buijen <Rense.Buijen_at_dct-mail.com>
Date: Thu, 28 Feb 2002 09:33:51 +0100

Hello,

I am using Hotline Client 1.8.5 from Hotline Communications Ltd on a
windows XP platform. In this client you have the options to save
bookmarks so you can easily connect to your sites. When I was looking
around in the "Bookmarks" dir (program files\hotline communications ltd)
I saw that the bookmarks store your login, password and host in
plaintext although it is a binary file. Has this been mentioned before?
Is this normal or just a flaw from the creators?

Cheers,

Rens
Received on Mar 01 2002

This message: [ Message body ]
Next message: secure_at_conectiva.com.br: "[CLA-2002:464] Conectiva Linux Security Announcement - squid"
Previous message: Rashed Alabbar: "NAI Gauntlet Firewall 5.5 for NT (Multiple Vendor HTTP CONNECT TCP Tunnel Vulnerability (bugtraq id 4131)"
Next in thread: macdaddy_at_neo.pittstate.edu: "Re: Hotline Client Plain password vuln."
Reply: macdaddy_at_neo.pittstate.edu: "Re: Hotline Client Plain password vuln."

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]