Vulnerability Details CVE-2008-4540
Windows Mobile 6 on the HTC Hermes device makes WLAN passwords available to an auto-completion mechanism for the password input field, which allows physically proximate attackers to bypass password authentication and obtain WLAN access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.023
EPSS Ranking 83.9%
CVSS Severity
CVSS v2 Score 2.1
References
- http://securityreason.com/securityalert/4402
- http://www.securityfocus.com/archive/1/497151/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45857
- http://securityreason.com/securityalert/4402
- http://www.securityfocus.com/archive/1/497151/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45857
Products affected by CVE-2008-4540
-
cpe:2.3:h:htc:hermes:*
-
cpe:2.3:o:microsoft:windows_mobile:6.0