Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
Re: Mercora IMRadio 18.104.22.168 Discloses Passwords to Local Users
From: 3APA3A (3APA3ASECURITY.NNOV.RU)
Date: Wed Aug 24 2005 - 09:03:20 CDT
There is no bug, at least described one. Only current user or user with
administrative privileges can access HKEY_CURRENT_USER.
--Tuesday, August 23, 2005, 5:20:16 PM, you wrote to bugtraqsecurityfocus.com:
ksc> Mercora IMRadio 22.214.171.124 stores username and passwords in the Windows
ksc> Registry in plain text. A local user can read the values.
ksc> Auto.Username = Mercora IMRadio Username
ksc> Auto.Password = Mercora IMRadio Password