Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026

CVE-2004-2555

Description

Riverdeep FoolProof Security 3.9.x on Windows 98 and Windows ME uses weak cryptography (arithmetic and XOR operations) to relate the Control password to the Administrator password, which allows local users to calculate the Administrator password if they know the Control password and password recovery key.

Affected products

Smartstuff/Foolproof Security3 versions
cpe:2.3:a:smartstuff:foolproof_security:3.9:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:smartstuff:foolproof_security:3.9:*:*:*:*:*:*:*
- cpe:2.3:a:smartstuff:foolproof_security:3.9.4:*:*:*:*:*:*:*
- cpe:2.3:a:smartstuff:foolproof_security:3.9.7:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

archives.neohapsis.com/archives/fulldisclosure/2004-06/0081.htmlnvdExploit
www.osvdb.org/6735nvdExploit
www.securityfocus.com/bid/10467nvdExploit
secunia.com/advisories/11790nvd
exchange.xforce.ibmcloud.com/vulnerabilities/16327nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000