Flashget 0.9 - 1.2 Local DialUp Password Hi-Jacking

To: <bugtraq@xxxxxxxxxxxxxxxxx>
Subject: Flashget 0.9 - 1.2 Local DialUp Password Hi-Jacking
From: "Rafel Ivgi" <nuritrv18@xxxxxxxxxxxx>
Date: Wed, 10 Dec 2003 21:17:29 +0200
Importance: Normal
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

Flashget 0.9 - 1.2 Local DialUp Password Hi-Jacking 
***************************************************
Discovered by Rafel Ivgi, The-Insider.
http://theinsider.deep-ice.com
(This Is My First Advisory!)

Whenever a user sets flashget to dial-up to the internet he types his
username &  password.
This sensitive data is being saved at the registery without no
encryption!.
It saved as hex data at the following location.

[HKEY_USERS\.DEFAULT\Software\JetCar\JetCar\DialUp]
"Entry"="<connection name>"
"UserName"="<dialup username>"
"Password"=hex:'<dialup password'<

Prev by Date: RE: Internet Explorer URL parsing vulnerability
Next by Date: GeoHttpServer[webcam] Causes MFC42.DLL to overflow
Previous by thread: Mambo Open Source 4.0.14 SQL injection
Next by thread: GeoHttpServer[webcam] Causes MFC42.DLL to overflow
Index(es):
- Date
- Thread