header-logo
Suggest Exploit
vendor:
Hotfoon Dialer
by:
SecurityFocus
7.5
CVSS
HIGH
Buffer Overflow
120
CWE
Product Name: Hotfoon Dialer
Affected Version From: Hotfoon4.exe
Affected Version To: Hotfoon4.exe
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

Hotfoon Dialer Buffer Overflow Vulnerability

A buffer overflow vulnerability has been reported for the Hotfoon dialer. The vulnerability exists in a text input field for dialing telephone numbers. Reportedly, Hotfoon4.exe does not adequately perform boundary checks on this field. It is possible to crash the service and execute code.

Mitigation:

Input validation should be used to prevent buffer overflows.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/6156/info

A buffer overflow vulnerability has been reported for the Hotfoon dialer. The vulnerability exists in a text input field for dialing telephone numbers. Reportedly, Hotfoon4.exe does not adequately perform boundary checks on this field.

It is possible to crash the service and execute code.

Voice:aaaaaa.........76 a's

Navigation

Suggest Exploit

Services By CQR