2005-11-16 07:37:00
mitre
PUBLISHED
Netfone.exe of NetTelephone 3.5.6 uses weak encryption for user PINs and stores user account numbers in plaintext in the HKEY_CURRENT_USERSoftwareMediaRing.comSDKNetTelephonesettings registry key, which could allow local users to gain unauthorized access to NetTelephone accounts.