CVE-2004-2555
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
31/12/2004
Last modified:
03/04/2025
Description
Riverdeep FoolProof Security 3.9.x on Windows 98 and Windows ME uses weak cryptography (arithmetic and XOR operations) to relate the Control password to the Administrator password, which allows local users to calculate the Administrator password if they know the Control password and password recovery key.
Impact
Base Score 2.0
2.10
Severity 2.0
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:smartstuff:foolproof_security:3.9:*:*:*:*:*:*:* | ||
| cpe:2.3:a:smartstuff:foolproof_security:3.9.4:*:*:*:*:*:*:* | ||
| cpe:2.3:a:smartstuff:foolproof_security:3.9.7:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0081.html
- http://secunia.com/advisories/11790
- http://www.osvdb.org/6735
- http://www.securityfocus.com/bid/10467
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16327
- http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0081.html
- http://secunia.com/advisories/11790
- http://www.osvdb.org/6735
- http://www.securityfocus.com/bid/10467
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16327