Lucene search

[email protected]CVE-2000-0427

HistoryJul 12, 2000 - 4:00 a.m.

CVE-2000-0427

2000-07-1204:00:00

[email protected]

web.nvd.nist.gov

cve-2000-0427

aladdin knowledge systems

etoken

physical access

sensitive information

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.1 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.5%

JSON

The Aladdin Knowledge Systems eToken device allows attackers with physical access to the device to obtain sensitive information without knowing the PIN of the owner by resetting the PIN in the EEPROM.

Affected configurations

NVD

Node

aladdin_knowledge_systemsetokenMatch3.3.3

CPENameOperatorVersion
aladdin_knowledge_systems:etokenaladdin knowledge systems etokeneq3.3.3

CPE	Name	Operator	Version
aladdin_knowledge_systems:etoken	aladdin knowledge systems etoken	eq	3.3.3

References

www.l0pht.com/advisories/etoken-piepa.txt

www.osvdb.org/3266

www.securityfocus.com/bid/1170

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.1 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.5%

JSON

Related for CVE-2000-0427

cvelist1 nvd1